A Lightweight Mitigation Approach against a New Inundation Attack in RPL-Based IoT Networks
-
Published:2023-09-16
Issue:18
Volume:13
Page:10366
-
ISSN:2076-3417
-
Container-title:Applied Sciences
-
language:en
-
Short-container-title:Applied Sciences
Author:
Rouissat Mehdi1ORCID, Belkheir Mohammed2, Alsukayti Ibrahim S.3ORCID, Mokaddem Allel2ORCID
Affiliation:
1. STIC Laboratory, Univeristy Center Nour Bachir El-Bayadh, University Aboubekr Belkaid, Tlemcen 13000, Algeria 2. LIMA Laboratory, Univeristy Center Nour Bachir, El-Bayadh 32000, Algeria 3. Department of Computer Science, College of Computer, Qassim University, Buraydah 51452, Saudi Arabia
Abstract
Internet of Things (IoT) networks are being widely deployed for a broad range of critical applications. Without effective security support, such a trend would open the doors to notable security challenges. Due to their inherent constrained characteristics, IoT networks are highly vulnerable to the adverse impacts of a wide scope of IoT attacks. Among these, flooding attacks would cause great damage given the limited computational and energy capacity of IoT devices. However, IETF-standardized IoT routing protocols, such as the IPv6 Routing Protocol for Low Power and Lossy Networks (RPL), have no relevant security-provision mechanism. Different variants of the flooding attack can be easily initiated in RPL networks to exhaust network resources and degrade overall network performance. In this paper, a novel variant referred to as the Destination Information Object Flooding (DIOF) attack is introduced. The DIOF attack involves an internal malicious node disseminating falsified information to instigate excessive transmissions of DIO control messages. The results of the experimental evaluation demonstrated the significant adverse impact of DIOF attacks on control overhead and energy consumption, which increased by more than 500% and 210%, respectively. A reduction of more than 32% in Packet Delivery Ratio (PDR) and an increase of more than 192% in latency were also experienced. These were more evident in cases in which the malicious node was in close proximity to the sink node. To effectively address the DIOF attack, we propose a new lightweight approach based on a collaborative and distributed security scheme referred to as DIOF-Secure RPL (DSRPL). It provides an effective solution, enhancing RPL network resilience against DIOF attacks with only simple in-protocol modifications. As the experimental results indicated, DSRPL guaranteed responsive detection and mitigation of the DIOF attacks in a matter of a few seconds. Compared to RPL attack scenarios, it also succeeded in reducing network overhead and energy consumption by more than 80% while maintaining QoS performance at satisfactory levels.
Funder
Deanship of Scientific Research, Qassim University
Subject
Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science
Reference79 articles.
1. New Frontiers in IoT: Networking, Systems, Reliability and Security Challenges;Bagchi;IEEE Internet Things J.,2020 2. Panigrahi, C.R., Pati, B., Mohapatra, P., Buyya, R., and Li, K.C. (2021). Progress in Advanced Computing and Intelligent Engineering. Advances in Intelligent Systems and Computing, Springer. 3. Study of security issues and solutions in Internet of Things (IoT);Rekha;Mater. Today Proc.,2021 4. Petrosyan, A. (2023, July 17). Global Annual Number of IoT Cyber Attacks 2018–2022. Available online: https://www.statista.com/statistics/1377569/worldwide-annual-internet-of-things-attacks/. 5. Kupreev, O., Badovskaya, E., and Gutnikov, A. (2023, July 17). DDoS Attacks in Q1 2020. Kaspersky, DDOS Reports, 2020. [Online]. Available online: https://securelist.com/ddos-attacks-in-q1-2020/96837/.
Cited by
6 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
|
|