Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes

Stefan Dietzel; Julian Gürtler; R. van der Heijden; Rens van der Heijden; Frank Kargl

doi:10.1109/VNC.2014.7013332

Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes

Stefan Dietzel, Julian Gürtler, R. van der Heijden, Rens van der Heijden, Frank Kargl

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

8 Citations (Scopus)

Abstract

In Vehicular Ad-hoc Networks (VANETs), vehicles exchange messages to enhance safety, driving efficiency, and comfort. The limited wireless channel capacity is a challenge especially for traffic efficiency applications, such as traffic in- formation systems. In such systems, a large number of traffic or road status observations needs to be disseminated quickly to interested vehicles, often via multi-hop forwarding and in a larger geographic area than what is needed for traffic safety applications. In-network aggregation protocols are a viable tool to enhance scalability of such applications. But from a security perspective, they open new attack vectors for insider attackers, because vehicles collaboratively merge and modify messages dur- ing dissemination. Moreover, countermeasures using too much communication bandwidth negatively affect scalability. In this paper, we present a bandwidth-efficient protection mechanism for in-network aggregation based on data-consistency checking. We combine data mining techniques to detect false information with a filtering technique for forwarding paths that limits the influence of attackers on aggregated data. Simulation results show that our approach can successfully detect common attacks on aggregation while maintaining bandwidth efficiency.

Original language	Undefined
Title of host publication	Proceedings of the IEEE Vehicular Networking Conference 2014 (VNC 2014)
Place of Publication	USA
Publisher	IEEE
Pages	135-142
Number of pages	8
ISBN (Print)	978-1-4799-7660-7
DOIs	https://doi.org/10.1109/VNC.2014.7013332
Publication status	Published - Dec 2014
Event	IEEE Vehicular Networking Conference, VNC 2014 - Paderborn, Germany Duration: 3 Dec 2014 → 5 Dec 2014 http://www.ieee-vnc.org/2014/program.html

Publication series

Name
Publisher	IEEE

Conference

Conference	IEEE Vehicular Networking Conference, VNC 2014
Abbreviated title	VNC
Country	Germany
City	Paderborn
Period	3/12/14 → 5/12/14
Internet address	http://www.ieee-vnc.org/2014/program.html

Keywords

EWI-25524
SCS-Cybersecurity
information aggregation
multi-hop communication
METIS-309792
Security
VANETS
IR-94313
EC Grant Agreement nr.: FP7/269994

Access to Document

10.1109/VNC.2014.7013332

http://eprints.eemcs.utwente.nl/secure2/25524/01/2014-12-vnc-dietzel.pdf

Cite this

@inproceedings{b82bd907904f41b1ae654007c524a460,

title = "Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes",

abstract = "In Vehicular Ad-hoc Networks (VANETs), vehicles exchange messages to enhance safety, driving efficiency, and comfort. The limited wireless channel capacity is a challenge especially for traffic efficiency applications, such as traffic in- formation systems. In such systems, a large number of traffic or road status observations needs to be disseminated quickly to interested vehicles, often via multi-hop forwarding and in a larger geographic area than what is needed for traffic safety applications. In-network aggregation protocols are a viable tool to enhance scalability of such applications. But from a security perspective, they open new attack vectors for insider attackers, because vehicles collaboratively merge and modify messages dur- ing dissemination. Moreover, countermeasures using too much communication bandwidth negatively affect scalability. In this paper, we present a bandwidth-efficient protection mechanism for in-network aggregation based on data-consistency checking. We combine data mining techniques to detect false information with a filtering technique for forwarding paths that limits the influence of attackers on aggregated data. Simulation results show that our approach can successfully detect common attacks on aggregation while maintaining bandwidth efficiency.",

keywords = "EWI-25524, SCS-Cybersecurity, information aggregation, multi-hop communication, METIS-309792, Security, VANETS, IR-94313, EC Grant Agreement nr.: FP7/269994",

author = "Stefan Dietzel and Julian G{\"u}rtler and {van der Heijden}, R. and {van der Heijden}, Rens and Frank Kargl",

note = "eemcs-eprint-25524 ; null ; Conference date: 03-12-2014 Through 05-12-2014",

year = "2014",

month = dec,

doi = "10.1109/VNC.2014.7013332",

language = "Undefined",

isbn = "978-1-4799-7660-7",

publisher = "IEEE",

pages = "135--142",

booktitle = "Proceedings of the IEEE Vehicular Networking Conference 2014 (VNC 2014)",

address = "United States",

url = "http://www.ieee-vnc.org/2014/program.html",

}

Dietzel, S, Gürtler, J, van der Heijden, R, van der Heijden, R & Kargl, F 2014, Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes. in Proceedings of the IEEE Vehicular Networking Conference 2014 (VNC 2014). IEEE, USA, pp. 135-142, IEEE Vehicular Networking Conference, VNC 2014, Paderborn, Germany, 3/12/14. https://doi.org/10.1109/VNC.2014.7013332

Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes. / Dietzel, Stefan; Gürtler, Julian; van der Heijden, R.; van der Heijden, Rens; Kargl, Frank.

Proceedings of the IEEE Vehicular Networking Conference 2014 (VNC 2014). USA : IEEE, 2014. p. 135-142.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Redundancy-based Statistical Analysis for Insider Attack Detection in VANET Aggregation Schemes

AU - Dietzel, Stefan

AU - Gürtler, Julian

AU - van der Heijden, R.

AU - van der Heijden, Rens

AU - Kargl, Frank

N1 - eemcs-eprint-25524

PY - 2014/12

Y1 - 2014/12

N2 - In Vehicular Ad-hoc Networks (VANETs), vehicles exchange messages to enhance safety, driving efficiency, and comfort. The limited wireless channel capacity is a challenge especially for traffic efficiency applications, such as traffic in- formation systems. In such systems, a large number of traffic or road status observations needs to be disseminated quickly to interested vehicles, often via multi-hop forwarding and in a larger geographic area than what is needed for traffic safety applications. In-network aggregation protocols are a viable tool to enhance scalability of such applications. But from a security perspective, they open new attack vectors for insider attackers, because vehicles collaboratively merge and modify messages dur- ing dissemination. Moreover, countermeasures using too much communication bandwidth negatively affect scalability. In this paper, we present a bandwidth-efficient protection mechanism for in-network aggregation based on data-consistency checking. We combine data mining techniques to detect false information with a filtering technique for forwarding paths that limits the influence of attackers on aggregated data. Simulation results show that our approach can successfully detect common attacks on aggregation while maintaining bandwidth efficiency.

AB - In Vehicular Ad-hoc Networks (VANETs), vehicles exchange messages to enhance safety, driving efficiency, and comfort. The limited wireless channel capacity is a challenge especially for traffic efficiency applications, such as traffic in- formation systems. In such systems, a large number of traffic or road status observations needs to be disseminated quickly to interested vehicles, often via multi-hop forwarding and in a larger geographic area than what is needed for traffic safety applications. In-network aggregation protocols are a viable tool to enhance scalability of such applications. But from a security perspective, they open new attack vectors for insider attackers, because vehicles collaboratively merge and modify messages dur- ing dissemination. Moreover, countermeasures using too much communication bandwidth negatively affect scalability. In this paper, we present a bandwidth-efficient protection mechanism for in-network aggregation based on data-consistency checking. We combine data mining techniques to detect false information with a filtering technique for forwarding paths that limits the influence of attackers on aggregated data. Simulation results show that our approach can successfully detect common attacks on aggregation while maintaining bandwidth efficiency.

KW - EWI-25524

KW - SCS-Cybersecurity

KW - information aggregation

KW - multi-hop communication

KW - METIS-309792

KW - Security

KW - VANETS

KW - IR-94313

KW - EC Grant Agreement nr.: FP7/269994

U2 - 10.1109/VNC.2014.7013332

DO - 10.1109/VNC.2014.7013332

M3 - Conference contribution

SN - 978-1-4799-7660-7

SP - 135

EP - 142

BT - Proceedings of the IEEE Vehicular Networking Conference 2014 (VNC 2014)

PB - IEEE

CY - USA

Y2 - 3 December 2014 through 5 December 2014

ER -