Formal modelling and analysis of denial of services attacks in wireless sensor networks

Wireless Sensor Networks (WSNs) have attracted considerable research attention in recent years because of the perceived potential benefits offered by self-organising, multi-hop networks consisting of low-cost and small wireless devices for monitoring or control applications in di±cult environments. WSN may be deployed in hostile or inaccessible environments and are often unattended. These conditions present many challenges in ensuring that WSNs work effectively and survive long enough to fulfil their functionalities. Securing a WSN against any malicious attack is a particular challenge. Due to the limited resources of nodes, traditional routing protocols are not appropriate in WSNs and innovative methods are used to route data from source nodes to sink nodes (base stations). To evaluate the routing protocols against DoS attacks, an innovative design method of combining formal modelling and computer simulations has been proposed. This research has shown that by using formal modelling hidden bugs (e.g. vulnerability to attacks) in routing protocols can be detected automatically. In addition, through a rigorous testing, a new routing protocol, RAEED (Robust formally Analysed protocol for wirEless sEnsor networks Deployment), was developed which is able to operate effectively in the presence of hello flood, rushing, wormhole, black hole, gray hole, sink hole, INA and jamming attacks. It has been proved formally and using computer simulation that the RAEED can pacify these DoS attacks. A second contribution of this thesis relates to the development of a framework to check the vulnerability of different routing protocols against Denial of Service(DoS) attacks. This has allowed us to evaluate formally some existing and known routing protocols against various DoS attacks iand these include TinyOS Beaconing, Authentic TinyOS using uTesla, Rumour Routing, LEACH, Direct Diffusion, INSENS, ARRIVE and ARAN protocols. This has resulted in the development of an innovative and simple defence technique with no additional hardware cost for deployment against wormhole and INA attacks. In the thesis, the detection of weaknesses in INSENS, Arrive and ARAN protocols was also addressed formally. Finally, an e±cient design methodology using a combination of formal modelling and simulation is propose to evaluate the performances of routing protocols against DoS attacks

Improving Software Cost Estimation With Function Points Analysis Using Fuzzy Logic Method

Function Points Analysis (FPA) is amongst the most generally used method to assess software cost estimation frameworks. This process speaks to the measurement of an undertaking, application, and function by its relative functional complexity. In general, it has numerous effective applications used in both industry and scholarly research. This is noticed that customized estimate technologies which can confront genuine challenges utilizing on programming building information is normally constrained, loosely gathered and deficient. To enquire these queries composite programming models, blend of information, fuzzy logic and master judgment is proposed. This is trusted that outcomes announced here will animate, renew investigation of fuzzy logic to genuine programming designing issues. In this research paper, we use Function Points and apply some new models to pick up a superior estimation of programming properties. The utilization of ideas and characteristics from the fuzzy set hypothesis to stretch out function points analysis to fuzzy function points analysis. Fuzzy hypothesis tries to construct formal quantitative arrangement equipped for imitating imprecision of the human information. With the function points created by Fuzzy FPA, an estimate value for example, expenses/cost and software development can be more correctly determined

The formal evaluation and design of routing protocols for wireless sensor networks in hostile environments

Wireless Sensor Networks (WSNs) have attracted considerable research attention in recent years because of the perceived potential benefits offered by self-organising, multi-hop networks consisting of low-cost and small wireless devices for monitoring or control applications in di±cult environments. WSN may be deployed in hostile or inaccessible environments and are often unattended. These conditions present many challenges in ensuring that WSNs work effectively and survive long enough to fulfil their functionalities. Securing a WSN against any malicious attack is a particular challenge. Due to the limited resources of nodes, traditional routing protocols are not appropriate in WSNs and innovative methods are used to route data from source nodes to sink nodes (base stations). To evaluate the routing protocols against DoS attacks, an innovative design method of combining formal modelling and computer simulations has been proposed. This research has shown that by using formal modelling hidden bugs (e.g. vulnerability to attacks) in routing protocols can be detected automatically. In addition, through a rigorous testing, a new routing protocol, RAEED (Robust formally Analysed protocol for wirEless sEnsor networks Deployment), was developed which is able to operate effectively in the presence of hello flood, rushing, wormhole, black hole, gray hole, sink hole, INA and jamming attacks. It has been proved formally and using computer simulation that the RAEED can pacify these DoS attacks. A second contribution of this thesis relates to the development of a framework to check the vulnerability of different routing protocols against Denial of Service(DoS) attacks. This has allowed us to evaluate formally some existing and known routing protocols against various DoS attacks iand these include TinyOS Beaconing, Authentic TinyOS using uTesla, Rumour Routing, LEACH, Direct Diffusion, INSENS, ARRIVE and ARAN protocols. This has resulted in the development of an innovative and simple defence technique with no additional hardware cost for deployment against wormhole and INA attacks. In the thesis, the detection of weaknesses in INSENS, Arrive and ARAN protocols was also addressed formally. Finally, an e±cient design methodology using a combination of formal modelling and simulation is propose to evaluate the performances of routing protocols against DoS attacks.EThOS - Electronic Theses Online ServiceGBUnited Kingdo

Virtual Machine’s Network Security

Network virtualization has become progressively unmistakable lately. It enables the creation of organizational frameworks that are expressly tailored to the requirements of distinctive organizational applications and facilitates the introduction of favorable circumstances for the occurrence and evaluation of new designs and conventions. Despite the extensive materiality of organizational virtualization, the widespread use of communication channels and steering devices raises a number of safety-related issues. To enable their use in real, large-scale settings, virtual organization foundations must be given security. In this paper, we see the details of industry's top practices for virtual organization security. We discuss some of the major risks, the main challenges associated with this type of climate, as well as the arrangements suggested in the text that aim to handle various security vantage points. Virtualization is a notable thought having applications in different fields of registering. This strategy takes into consideration the production of numerous virtual stages on a solitary actual framework, taking into consideration the execution of heterogeneous models on a similar equipment. It might likewise be used to streamline the use of actual assets, on the grounds that a manager can progressively make and erase virtual hubs to satisfy fluctuated degrees of need. Virtual Machine’s Network Security is an important topic in today’s world, due to the rapid increase in the use of virtual machines. Virtual machines provide a more efficient, cost effective and secure way of running applications and services. However, there are some security risks associated with virtual machines which must be tackled to ensure the safety and security of the network. This paper presents security principal known as Nonrepudiation which authenticates the delivery of messages and transaction using Digital Signature method. Furthermore, an overview of the security threats and solutions associated with virtual machines and their networks, including the different types of threats, solutions and best practices to protect against them. Additionally, the paper discusses the importance of monitoring and logging in virtual machines. Finally, the paper concludes with a few recommendations for countermeasure the security of virtual machines and their networks

Application of Formal Modeling to Detect Black Hole Attacks in Wireless Sensor Network Routing Protocols

Black hole attack has long been a problem in wireless in data routing. Although numerous solutions have been proposed, they all have drawbacks. The main reason is that formal modeling techniques have not been employed to confirm whether the solutions are immune from black hole attacks. We have earlier shown how formal modeling can be utilized efficiently to detect the vulnerabilities of existing routing protocols against black hole attacks. In this paper we propose a new protocol, RAEED (Robust formally Analyzed protocol for wirEless sEnsor networks Deployment), which is able to address the problem of black hole attacks. Using formal modeling we prove that RAEED avoids this type of attack. Finally computer simulations were carried out to support our findings

Formally verified solution to resolve tunnel attacks in wireless sensor network

In ad-hoc and wireless networks, Denial of Service (DoS) attacks has always been problematic during data routing. DoS attacks disrupt the data routing and avert the generated data to reach the destination or the sink nodes. In tunnel attack, which is one of the type of DoS attacks, the intruder attracts all the traffic towards itself and prevent it from forwarding further to the neighboring nodes. Researchers have presented multiple solutions to cater the problem and minimize or avoid the tunnel attacks, but they all have their shortcomings. The main reason behind all the drawbacks is that those solutions have not been confirmed using formal methods. The formal methods can be utilized to authenticate whether or not the solutions are immune to DoS attacks. In our previous researches, it has been revealed that by employing formal methods, our newly developed protocol RAEED can detect and avoid many DoS attacks. In this research paper, it has been proved using model checker that RAEED can efficiently avoid both simple and intelligent tunnel attacks. Moreover, the results of formal methods have been confirmed with the help of computer simulations as well as practical implementation on MicaZ motes. In future we aim to employ formal methods to verify more wireless communication issues in multiple protocols

RAEED-NEHA: A new handshake scheme for RAEED protocol

Wireless and Ad-Hoc networks are affected by Denial of Service (DoS) attacks during data routing. Different protocols have different degree of resilience to DoS attacks. In our earlier research we have discussed weaknesses in existing routing protocols used in wireless and ad hoc networks. As a solution we presented the RAEED protocol. In this research, we have presented a new handshake scheme in the Data Forwarding Phase (DFP) of the RAEED protocol. The new protocol RAEED-NEHA is proved to be more resilient towards DoS attacks such as black hole attacks, sink hole attacks etc. The proof is established using the methodology introduced in our earlier research which is a combination of formal verification, computer aided simulation and observance of response of the protocol running on MicaZ motes

Formally verified solution to resolve tunnel attacks in wireless sensor network

In ad-hoc and wireless networks, Denial of Service (DoS) attacks has always been problematic during data routing. DoS attacks disrupt the data routing and avert the generated data to reach the destination or the sink nodes. In tunnel attack, which is one of the type of DoS attacks, the intruder attracts all the traffic towards itself and prevent it from forwarding further to the neighboring nodes. Researchers have presented multiple solutions to cater the problem and minimize or avoid the tunnel attacks, but they all have their shortcomings. The main reason behind all the drawbacks is that those solutions have not been confirmed using formal methods. The formal methods can be utilized to authenticate whether or not the solutions are immune to DoS attacks. In our previous researches, it has been revealed that by employing formal methods, our newly developed protocol RAEED can detect and avoid many DoS attacks. In this research paper, it has been proved using model checker that RAEED can efficiently avoid both simple and intelligent tunnel attacks. Moreover, the results of formal methods have been confirmed with the help of computer simulations as well as practical implementation on MicaZ motes. In future we aim to employ formal methods to verify more wireless communication issues in multiple protocols

Vulnerability of INSENS to denial of service attacks

Wireless Sensor Networks (WSNs) may be deployed in hostile or inaccessible environments and are often unattended. In these conditions securing a WSN against malicious attacks is a particular challenge. This paper proposes to use formal methods to investigate the security of the INSENS protocol, in respect of its capability to withstand several denial of service attacks. The paper is an extension to our previous work where we proposed a formal framework to verify some wireless routing protocols. We have confirmed that the bidirectional verification employed by INSENS prevents attacks such as hello flood. However, INSENS is shown to be vulnerable to invisible node, wormhole and black hole attacks, even in a network of only a few nodes communicating over ideal channels. Packet loss in the presence of these attacks has been demonstrated and quantified using the TOSSIM wireless simulator