Securing Internet Coordinate System: Embedding Phase

Abstract : This paper addresses the issue of the security of Internet Coordinate Systems, by proposing a general method for malicious behavior detection during coordinate computations. We first show that the dynamics of a node, in a coordinate system without abnormal or malicious behavior, can be modeled by a Linear State Space model and tracked by a Kalman filter. Then we show, that the obtained model can be generalized in the sense that the parameters of a filter calibrated at a node can be used effectively to model and predict the dynamic behavior at another node, as long as the two nodes are not too far apart in the network. This leads to the proposal of a Surveyor infrastructure: Surveyor nodes are trusted, honest nodes that use each other exclusively to position themselves in the coordinate space, and are therefore immune to malicious behavior in the system. During their own coordinate embedding, other nodes can then use the filter parameters of a nearby Surveyor as a representation of normal, clean system behavior to detect and filter out abnormal or malicious activity. A combination of simulations and Planet- Lab experiments are used to demonstrate the validity, generality, and effectiveness of the proposed approach for two representative coordinate embedding systems, namely Vivaldi and NPS.
Type de document :
Rapport
[Technical Report] 2007
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00151257
Contributeur : Mohamed Ali Kaafar <>
Soumis le : samedi 2 juin 2007 - 10:18:51
Dernière modification le : jeudi 11 janvier 2018 - 16:25:58
Document(s) archivé(s) le : jeudi 8 avril 2010 - 18:46:20

Fichiers

coordinates-reparation.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00151257, version 1

Collections

Citation

Mohamed Ali Kaafar, Laurent Mathy, Chadi Barakat, Kavé Salamatian, Thierry Turletti, et al.. Securing Internet Coordinate System: Embedding Phase. [Technical Report] 2007. 〈inria-00151257〉

Partager

Métriques

Consultations de la notice

427

Téléchargements de fichiers

211