Hugelshofer, Fabian and Smith, Paul and Hutchison, David and Race, Nicholas J. P. (2009) OpenLIDS:a lightweight intrusion detection system for wireless mesh networks. In: Proceedings of the 15th Annual International Conference on Mobile Computing and Networking (MobiCom 2009). ACM, New York, pp. 309-320. ISBN 978-1-60558-702-8Full text not available from this repository.
Wireless mesh networks are being used to provide Internet access in a cost efficient manner. Typically, consumer-level wireless access points with modified software are used to route traffic to potentially multiple back-haul points. Malware infected computers generate malicious traffic, which uses valuable network resources and puts other systems at risk. Intrusion detection systems can be used to detect such activity. Cost constraints and the decentralised nature of WMNs make performing intrusion detection on mesh devices desirable. However, these devices are typically resource constrained. This paper describes the results of examining their ability to perform intrusion detection. Our experimental study shows that commonly-used deep packet inspection approaches are unreliable on such hardware. We implement a set of lightweight anomaly detection mechanisms as part of an intrusion detection system, called OpenLIDS. We show that even with the limited hardware resources of a mesh device, it can detect current malware behaviour in an efficient way.
|Item Type:||Contribution in Book/Report/Proceedings|
|Uncontrolled Keywords:||network resilience ; intersection project ; wray broadband project|
|Subjects:||Q Science > QA Mathematics > QA75 Electronic computers. Computer science|
|Departments:||Faculty of Science and Technology > School of Computing & Communications|
|Deposited On:||10 May 2010 22:02|
|Last Modified:||07 Jan 2015 21:17|
Actions (login required)