This thesis proposes a biometric-oriented security framework (short-named BOS-Framework) that provides a multilayer security for mobile ad hoc networks (MANETs) in the presence of packet-dropping attacks. MANETs are autonomous collection of mo-bile devices connected wirelessly in a peer-to-peer and multi-hop fashion without the use of central base stations or access points. MANET nodes cooperate in a distributed manner to provide network functionality. A review of current literature reveals that there is no single approach that provides a general solution for the different types of security threats in a MANET. As with most security solutions, there are trade-offs between resource constraints, performance, scalability, and provision of security features. Therefore, a hybrid approach that ad-dresses the security requirements of a MANET with packet-dropping attacks is warranted. The BOS-Framework is designed to mitigate packet-dropping attacks in MA-NETs by improving authentication and optimising routing path selection, while reduc-ing overhead operational cost. The BOS-Framework is based on four key interconnected ideas: (i) multimodal bio-metric user-to-device authentication, (ii) a novel digital reference, (iii) two-factor node-to-node authentication, (iv) reputation-based routing path selection. When users authenticate to devices, a multimodal biometric authentication mecha-nism provides measures against device-level attacks. Node-to-node authentication is implemented by a two-factor authentication consisting of cryptographic credentials and a digital reference. To mitigate internal threats from untrusted nodes, the trust level of an intending participant must be over a certain threshold value before the par-ticipant is allowed to join the network. Intending participants prove this by securely providing cryptographic credentials and a digital reference which has been digitally signed by a trusted recommender. Node-to-node communication is further secured by encryption and decryption, and by hash algorithm. Packet-dropping threats are mitigated by a reputation grading mechanism. Each node has its own unique and subjective reputation values that specify the perceived reputation of other nodes. When routing paths are discovered, a sending node ranks the discovered paths using a path ranking algorithm. The best ranked path is selected for data transmission. The BOS-Framework ideas are implemented and evaluated using the Scyther tool for verifying specified security properties, and the Riverbed Modeler tool for measuring specified network performance parameters. The results show that a MANET using the DSR protocol supported with the BOS-Framework achieves a better performance than the one without the BOS-Framework. The improvements make the BOS-Framework more effective in providing the relevant MANET security.
| Date of Award | 31 Dec 2022 |
|---|
| Original language | English |
|---|
| Awarding Institution | - The University of Manchester
|
|---|
| Supervisor | Ning Zhang (Supervisor) |
|---|
BOS-FRAMEWORK: BIOMETRIC-ORIENTED SECURITY FRAMEWORK FOR MOBILE AD HOC NETWORKS
Akpoghiran, M. (Author). 31 Dec 2022
Student thesis: Phd