Wei Dong,Xiaojin Liu

DOI: https://doi.org/10.1109/tii.2015.2495147

IF: 12.3

2015-01-01

IEEE Transactions on Industrial Informatics

Abstract:Time synchronization is crucial for cyber-physical systems (CPSs), e.g., wireless sensor and actuator networks. Cyber physical security is an important yet challenging problem. In particular, attacks to the time synchronization service may incur data distortion or even malfunction of the whole system. Sybil attack is one of the most common attack types for sensor networks, where a node illegitimately claims multiple identities. Existing secure time-synchronization protocols; however, cannot well address Sybil attacks in the time synchronization process. We propose a robust and secure time-synchronization protocol (RTSP) to defend against Sybil attacks. Different from previous secure timesync protocols, RTSP employs a novel graph theoretical approach, which is able to perform anomaly detection at the message level instead of the node level. This fine-grained detection ability enables RTSP to become robust against Sybil attacks, as well as node compromise and message manipulation attacks. Extensive experimental results show the effectiveness of our proposed protocol.

Tayyab Khan,Karan Singh

DOI: https://doi.org/10.1007/s11277-024-10948-0

IF: 2.017

2024-04-10

Wireless Personal Communications

Abstract:Sensor networks have emerged as a promising technology for collecting data and capturing information about the physical world. However, these networks are often deployed in harsh and inaccessible environments, making them susceptible to various security attacks. One of the most severe attacks in wireless sensor networks (WSNs) is the Sybil attack, where a malicious node illegitimately assumes multiple fraudulent identities to deceive and disrupt the network. To address this complex and challenging problem, this paper proposes a dual trust-based multi-level Sybil (DTMS) attack detection approach for WSNs. The approach employs a multi-level detection system that verifies the identity and location of each node. At each level (Cluster Member, Cluster Head, and Base Station), a trust value is calculated based on the node's behavior. The trust value incorporates both communication trust and data trust, ensuring a satisfactory level of trust before accepting information from a node. The DTMS approach incorporates a dynamic reward and penalty coefficient in the trust function to accurately capture the severity of a node's behavior. Additionally, data aggregation techniques are employed to reduce communication overhead and conserve energy. The performance of DTMS is evaluated based on various metrics such as the severity of the trust function, true detection rate, false detection rate, residual energy, network lifetime, and packet loss ratio. Simulation results demonstrate that DTMS can effectively detect Sybil nodes, achieving a 100% detection rate in a malicious environment. Furthermore, a comparison with existing schemes highlights the desirable performance of DTMS across multiple parameters, including true detection rate, false detection rate, energy consumption, packet loss rate, and the number of active nodes.

telecommunications

Al Amin Islam,Kazi Abu Taher

DOI: https://doi.org/10.1109/iceeict53905.2021.9667810

2021-11-18

Abstract:Underwater Wireless Sensor Networks (UWSN) has vast application areas. Due to the unprotected nature, underwater security is a prime concern. UWSN becomes vulnerable to different attacks due to malicious nodes. Sybil attack is one of the major attacks in UWSN. Most of the proposed security methods are based on encryption and decryption which consumes resources of the sensor nodes. In this paper, a simple authentication mechanism is proposed for securing the UWSN from the Sybil attack. As the nodes have very less computation power and energy resources so this work is not followed any kind of encryption and decryption technique. An authentication process is designed in such a way that node engaged in communication authenticate neighboring nodes by node ID and the data stored in the cluster head. This work is also addressed sensor node compromisation issue through Hierarchical Fuzzy System (HFS) based trust management model. The trust management model has been simulated in Xfuzzy-3.5. After the simulation conducted, the proposed trust management mechanism depicts significant performance on detecting compromised nodes.

Zhaoyi Zhang,Yingxu Lai,Ye Chen,Jingwen Wei,Yuhang Wang

DOI: https://doi.org/10.1016/j.adhoc.2023.103092

IF: 4.816

2023-01-15

Ad Hoc Networks

Abstract:A Sybil attack is caused by a malicious vehicle node stealing fake identities and continuously generating fake vehicles on the road to create the illusion of congestion, which endangers normal vehicles on the road. Because Sybil vehicle nodes have trajectories and motion states similar to those of normal vehicles, they are more difficult to detect in high-density traffic environments. The real-time authentication of vehicles is impossible in the existing traffic environment; thus, malicious vehicle nodes with a high degree of stealth can continuously attack and are difficult to stop. In this paper, we propose a Sybil attack detection method based on basic security message (BSM) packets, which exploits the characteristic that BSM packets have a unique sending source and uses the spatiotemporal relationship of dynamic vehicle location changes to detect and trace Sybil attacks. A weighted integration strategy is proposed for increasing the detection precision without machine-learning model prediction. Experimental results indicated that the proposed method can detect Sybil attacks in real time and is not affected by the attack density or traffic density. Moreover, it can detect Sybil nodes and trace malicious nodes simultaneously, with precisions of ¿98% and ¿94%, respectively, resolving the difficulties of existing detection schemes.

computer science, information systems,telecommunications

Wei,Fengyuan Xu,Chiu C. Tan,Qun Li

DOI: https://doi.org/10.1109/tpds.2013.9

IF: 5.3

2013-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Distributed systems without trusted identities are particularly vulnerable to sybil attacks, where an adversary creates multiple bogus identities to compromise the running of the system. This paper presents SybilDefender, a sybil defense mechanism that leverages the network topologies to defend against sybil attacks in social networks. Based on performing a limited number of random walks within the social graphs, SybilDefender is efficient and scalable to large social networks. Our experiments on two 3,000,000 node real-world social topologies show that SybilDefender outperforms the state of the art by more than 10 times in both accuracy and running time. SybilDefender can effectively identify the sybil nodes and detect the sybil community around a sybil node, even when the number of sybil nodes introduced by each attack edge is close to the theoretically detectable lower bound. Besides, we propose two approaches to limiting the number of attack edges in online social networks. The survey results of our Facebook application show that the assumption made by previous work that all the relationships in social networks are trusted does not apply to online social networks, and it is feasible to limit the number of attack edges in online social networks by relationship rating.

Bin Xiao,Bo Yu,Chuanshan Gao

DOI: https://doi.org/10.1145/1160972.1160974

2006-01-01

Abstract:ABSTRACTSybil attacks have been regarded as a serious security threat to ad hoc networks and sensor networks. They may also impair the potential applications of VANETs (Vehicular Ad hoc Networks) by creating an illusion of traffic congestion. In this paper, we present a lightweight security scheme for detecting and localizing Sybil nodes in VANETs, based on statistic analysis of signal strength distribution. Our scheme is a distributed and localized approach, in which each vehicle on a road can perform the detection of potential Sybil vehicles nearby by verifying their claimed positions. We first introduce a basic signal-strength-based position verification scheme. However, the basic scheme proves to be inaccurate and vulnerable to spoof attacks. In order to compensate for the weaknesses of the basic scheme, we propose a technique to prevent Sybil nodes from covering up for each other. In this technique, traffic patterns and support from roadside base stations are used to our advantage. We, then, propose two statistic algorithms to enhance the accuracy of position verification. The algorithms can detect potential Sybil attacks by observing the signal strength distribution of a suspect node over a period of time. The statistic nature of our algorithms significantly reduces the verification error rate. Finally, we conduct simulations to explore the feasibility of our scheme.

Yuvaraj Rajendra,Venkatesan Subramanian,Sandeep Kumar Shukla

DOI: https://doi.org/10.1007/s12083-024-01673-3

IF: 3.488

2024-03-12

Peer-to-Peer Networking and Applications

Abstract:Vehicular Ad Hoc Networks (VANETs) play a critical role in the future development of Intelligent Transportation Systems (ITS). These networks facilitate communication between vehicles and roadside infrastructure, establishing a dynamic network capable of sharing and processing traffic data. By harnessing this data, a comprehensive understanding of traffic conditions can be achieved, ultimately improving road safety and efficiency. VANETs have the potential to warn drivers about potential hazards, suggest optimal routes, and coordinate traffic signals. However, the current system design poses a vulnerability where a vehicle can acquire multiple identities, allowing it to launch a Sybil attack by impersonating multiple vehicles. In this attack, Sybil (or fake) vehicles generate and report false data, leading to fabricated congestion reports and corrupting traffic management data. To address this issue, this research proposes a novel Sybil attack detection scheme that leverages Verifiable Delay Functions (VDFs) and location data. The proposed scheme utilizes VDFs iteratively computed by vehicles throughout their journeys, forming a VDF chain where the included data is immutable. A vehicle obtains a signature on its recent VDF state from nearby Roadside Units (RSUs) and other vehicles and incorporates these signatures into its VDF chain. The inclusion of signatures in the VDF chains is time-bound and can't be altered later. Essentially, the VDF chain serves as an immutable storage mechanism for each vehicle. Interactions between vehicles involve the exchange of signatures on VDF states, and these interactions, when compiled in a VDF chain, constitute a vehicle's trajectory. By analyzing these trajectories, we can effectively detect Sybil trajectories. Unlike existing methods that solely rely on vehicle-to-RSU interactions, resulting in high false positive rates, our approach introduces vehicle-to-vehicle interactions using VDF chains, thereby increasing the detection rate. Extensive experiments and simulations are conducted to evaluate the proposed scheme's performance in detection. The results demonstrate that our approach can accurately detect Sybil attacks while achieving low rates of false negatives and false positives when compared to existing models.

computer science, information systems,telecommunications

Salam Hamdan,Amjad Hudaib,Arafat Awajan

DOI: https://doi.org/10.1080/17445760.2019.1617865

2019-05-09

Abstract:Ad hoc networks is vulnerable to numerous number of attacks due to its infrastructure-less nature, one of these attacks is the Sybil attack. Sybil attack is a severe attack on vehicular ad hoc networks (VANET) in which the intruder maliciously claims or steals multiple identities and use these identities to disturb the functionality of the VANET network by disseminating false identities. Many solutions have been proposed in order to defense the VANET network against the Sybil attack. In this research a hybrid algorithm is proposed, by combining footprint and privacy-preserving detection of abuses of pseudonyms (P2DAP) methods. The hybrid detection algorithm is implemented using the ns2 simulator. The proposed algorithm is working as follows, P2DAP acting better than footprint when the number of vehicles increases. On the other hand, the footprint algorithm acting better when the speed of vehicles increases. The hybrid algorithm depends on encryption, authentication and on the trajectory of the vehicle. The scenarios will be generated using SUMO and MOVE tools.

Networking and Internet Architecture

Wei,Fengyuan Xu,Chiu C. Tan,Qun Li

DOI: https://doi.org/10.1109/infcom.2012.6195572

2012-01-01

Abstract:Distributed systems without trusted identities are particularly vulnerable to sybil attacks, where an adversary creates multiple bogus identities to compromise the running of the system. This paper presents SybilDefender, a sybil defense mechanism that leverages the network topologies to defend against sybil attacks in social networks. Based on performing a limited number of random walks within the social graphs, SybilDefender is efficient and scalable to large social networks. Our experiments on two 3,000,000 node real-world social topologies show that SybilDefender outperforms the state of the art by one to two orders of magnitude in both accuracy and running time. SybilDefender can effectively identify the sybil nodes and detect the sybil community around a sybil node, even when the number of sybil nodes introduced by each attack edge is close to the theoretically detectable lower bound. Besides, we propose two approaches to limiting the number of attack edges in online social networks. The survey results of our Facebook application show that the assumption made by previous work that all the relationships in social networks are trusted does not apply to online social networks, and it is feasible to limit the number of attack edges in online social networks by relationship rating.

Tong Zhou,Romit Roy Choudhury,Peng Ning,Krishnendu Chakrabarty

DOI: https://doi.org/10.1109/mobiq.2007.4451013

2007-01-01

Abstract:Vehicular ad hoc networks (VANETs) are being advocated for traffic control, accident avoidance, and a variety of other applications. Security is an important concern in VANETs because a malicious user may deliberately mislead other vehicles and vehicular agencies. One type of malicious behavior is called a Sybil attack, wherein a malicious vehicle pretends to be multiple other vehicles. Reported data from a Sybil attacker will appear to arrive from a large number of distinct vehicles, and hence will be credible. This paper proposes a light-weight and scalable framework to detect Sybil attacks. Importantly, the proposed scheme does not require any vehicle in the network to disclose its identity, hence privacy is preserved at all times. Simulation results demonstrate the efficacy of our protocol.

G. Shobana,Arockia Xavier Annie Rayan

DOI: https://doi.org/10.1504/ijahuc.2024.140667

2024-09-02

International Journal of Ad Hoc and Ubiquitous Computing

Abstract:Sybil attacks pose a significant security risk to ad hoc sensor networks, distorting information on traffic congestion, fake message transfers, etc. To address this issue, a novel technique for detecting Sybil attacks in VANETs makes use of node positions, distances, and received signal strength indicator (RSSI) values, whereas the legitimate nodes exhibit variations due to their various physical locations. The key idea is to identify Sybil nodes based on their similar RSSI and use a machine-learning model to detect Sybil nodes with high accuracy. In this work, the RSSI-based Sybil node identification (RSSI-SNID) technique, intended for Sybil node identification in a VANET environment, is used to construct a Sybil attack model. By integrating RSSI, distance, and timestamps in a multidimensional analysis, RSSI-SNIDs improve VANET's overall functionality in identifying Sybil attacks and attain 98% accuracy with a low false-positive rate, making it unique in its ability to identify these nodes.

computer science, information systems,telecommunications

P. Remya krishnan,Ritesh Koushik

DOI: https://doi.org/10.1007/s10922-024-09869-x

2024-09-12

Journal of Network and Systems Management

Abstract:Rapid development and deployment of VANET necessitate solutions to support its safe applications. One of the major threats to VANET is the Sybil attack that uses numerous fake identities to spread misleading information around the network, resulting in traffic jams, accidents, and theft. Most of the existing solutions to Sybil attacks in VANET concentrate mainly on detecting the presence of Sybil attacks and identifying the virtual Sybil nodes. Though solutions exist to detect the Sybil attacker node, the attack scenarios where multiple Sybil attackers generate the Sybil nodes collaboratively persist as a research gap that needs to be addressed effectively. In this paper, we concentrate on detecting multiple Sybil attackers and the Sybil nodes generated in VANET using a decentralized, distance-based strategy. Despite the performance verification of the proposed technique using simulation, in this paper, we evaluate it in a real-time test-bed environment of VANET to verify its practical applicability.

computer science, information systems,telecommunications

Chen,Weili Han,Xin Wang

DOI: https://doi.org/10.1504/ijccbs.2011.038948

2011-01-01

International Journal of Critical Computer-Based Systems

Abstract:Sybil attack is one of the serious threats in vehicular ad hoc networks (VANETs) because drivers may receive wrong information, which could lead to injury the lives of the drivers and passengers, when they are under Sybil attack. This paper, therefore, presents a novel solution named Sybil attack detection based on signature vectors (SADSIV) in VANETs. Each node gathers the digital signatures in their moving; then our algorithm detects Sybil attack by analysing and comparing vehicle nodes' signature vectors independently under the condition of inadequate infrastructures. We improve the feasibility of our approach through the limited infrastructures at the early deployment stages of VANETs. In addition, the independency and feasibility of our algorithm are more robust than the existing solutions which rely on collaboration of neighbouring nodes. Simulation results show that our method outperforms the existing detection schemes in terms of robustness, detection rate and lower system requirements.

Tong Zhou,Romit Roy,Choudhury Peng Ning,Krishnendu Chakrabarty

DOI: https://doi.org/10.1109/jsac.2011.110308

IF: 16.4

2011-01-01

IEEE Journal on Selected Areas in Communications

Abstract:Vehicular ad hoc networks (VANETs) are being increasingly advocated for traffic control, accident avoidance, and management of parking lots and public areas. Security and privacy are two major concerns in VANETs. Unfortunately, in VANETs, most privacy-preserving schemes are vulnerable to Sybil attacks, whereby a malicious user can pretend to be multiple (other) vehicles. In this paper, we present a lightweight and scalable protocol to detect Sybil attacks. In this protocol, a malicious user pretending to be multiple (other) vehicles can be detected in a distributed manner through passive overhearing by s set of fixed nodes called road-side boxes (RSBs). The detection of Sybil attacks in this manner does not require any vehicle in the network to disclose its identity; hence privacy is preserved at all times. Simulation results are presented for a realistic test case to highlight the overhead for a centralized authority such as the DMV, the false alarm rate, and the detection latency. The results also quantify the inherent trade-off between security, i.e., the detection of Sybil attacks and detection latency, and the privacy provided to the vehicles in the network. From the results, we see our scheme being able to detect Sybil attacks at low overhead and delay, while preserving privacy of vehicles.

Parisa Memarmoshrefi,Hang Zhang,Dieter Hogrefe

DOI: https://doi.org/10.4108/icst.bict.2014.258041

2015-01-01

Abstract:Due to the characteristics of mobile ad-hoc networks (MANETs) such as distributed self-organizing nature and multi-hops communication, bio-inspired approaches proposed to address challenges in these networks. Like in all communication networks, one of the major challenges in MANETs is security provision in these environments. As the traditional approaches such as Public Key Infrastructure (PKI) which are based on central authority are not suitable for dynamic, distributed and cooperative ad-hoc networks, one of the fundamental security threats in MANETs is Identity-based attack. In this work we propose a scheme inspired of the social life of ants, to discriminant the sever Sybil attacker and their related shadow/hidden identities in a self-organized authentication mechanism. For this aim, we adapt the idea of discrimination between mate and non-mate members, in real ants' life, based on aggression concept. We also present our simulation results and discuss some open research issues.

Hooman Asadian,Hamid Haj Seyed Javadi

DOI: https://doi.org/10.1002/spy2.19

2018-03-01

Security and Privacy

Abstract:The popularity of modern social networks has rendered social media platforms vulnerable to malicious activities. One such activity is a Sybil attack, in which a single entity emulates the behaviors of multiple users and attempts to create problems for other users and a network itself. This problem has prompted researchers to develop several techniques for preventing Sybil attacks, but in most cases, the efficiency assumptions that underlie proposed methods are not oriented toward reality. The current study puts forward an efficient framework for identifying Sybil attacks. The highly precise framework is underlain by rational assumptions and detects attacks on the basis of the structural characteristics of social networks and the social interactions among users. We evaluate our proposed framework using both synthetic and real world social network topologies. We show that SybilUncover is able to accurately identify high precision rate. Moreover, SybilUncover performs orders of magnitudes better than existing Sybil detection mechanisms.

Aboulfazl Dayyani,Maghsoud Abbaspour

DOI: https://doi.org/10.1049/cmu2.12734

IF: 1.345

2024-02-02

IET Communications

Abstract:This research introduces the SybilPSIoT method based on signed networks and the web of trust. SybilPSIoT receives a set of benevolent nodes (e.g. producing companies) to determine node labels. It also uses game theory and the smart contract‐based access control system to prevent creating new Sybil things. Sybil attacks are a very serious challenge in social networks including, the Social Internet of Things (SIoT). This paper introduces the SybilPSIoT method, in which a hybrid prevention and detection decentralized approach is proposed in SIoT based on smart contracts. The owner adds his objects to the smart contract. However, hostile owners can create Sybil things. This paper formally presents a model that uses a signed SIoT network with objects and identifiers as network nodes and information about the type of nodes (acknowledgers). Assuming the relationship between the edge marks between nodes and the node type, the proposed method uses trust paths between verification and desired nodes using a Bayesian inference model and structural balance patterns to judge the target node in these paths. It also uses game theory to control access owners to prevent Sybil from creating new things based on a cost‐benefit function. Based on the analysis method, a validating effect proportional to the path length on the target object was presented. This method was compared with the most novel available methods; the results from this comparison depict the scalability and effectiveness of the proposed method for large networks.

engineering, electrical & electronic

Siddiq Iqbal,B. R. Sujatha

DOI: https://doi.org/10.1007/s11276-024-03745-x

IF: 2.701

2024-05-08

Wireless Networks

Abstract:Nowadays, secured data transmission has become the most desired need for all networks. Ensuring secure authentication and data transmission in the network is a significant and important task in a heterogeneous wireless sensor network (HWSN). Even though several models are adopted in the network, offering secure authentication and sustaining the energy along with key management is still considered a major problem in the research community. Thus, in this paper, a novel energy efficient clustering and routing algorithm is proposed based on the Hierarchical enhanced identity based digital signature (Hierarchical-EIDS) algorithm in HWSN. Initially, an efficient clustering and cluster head (CH) selection are performed using a fuzzy transient search algorithm (FTSA) in order to play a significant role in energy consumption. In the next stage, adaptive Aquila optimization (AAO) has been introduced to define the optimal route for efficient data transmission. To overcome the mutual authentication, bilinear pairings, and public key generation, a Hierarchical-EIDS scheme is applied. Here, the homomorphic equilibrium (HE) algorithm is employed to generate a key for a particular sensor node (SN). The proposed method is implemented in MATLAB, and a comparative analysis has been carried out to determine the efficacy of the model. As a result, the proposed method accomplishes better performance in terms of security strength (0.08 per packet), average energy (AE) consumption (8.861 J), average end-to-end (AEE) delay (0.344 ms), and key length (1900 character). The acquired results outperform the existing models and prove their effectiveness.

computer science, information systems,telecommunications,engineering, electrical & electronic

Mahabaleshwar Kabbur,V. Arul Kumar

DOI: https://doi.org/10.1088/1742-6596/1427/1/012009

2020-01-01

Journal of Physics: Conference Series

Abstract:Abstract VANET is a next generation communication technology where vehicles create an autonomous network with assistance of RSU (Road Side Units). VANET provides legitimate information to the users on the road, in order to increase the road and user’s safety. It provides useful information to the vehicles about directions, location mapping, premises, etc. The fast propagation of emergency and local warning messages to the approaching vehicles will be helpful for preventing secondary accidents. If security of the network is not guaranteed, several attacks may occur, thereby alert messages may not reach to the RSUs on time or message may get spoof due to attack on it. Major attacks on emergency messages such as timing attack, spoofing attack, DoS attack, Sybil attack, etc. would be considered to mitigate and make the communication and infrastructure more secure. One of the major emergency message attack is Sybil, which is used by selfish message propagators to claim authenticity of their message by propagating with multiple identities. By deceiving other nodes with their false support using multiple identifies, they can achieve various purpose in network like vehicle re-routing, speed shift etc. This work proposes a RSU cooperative detection mechanism involving triangulation and fake propagation by RSU to identify the Sybil attacks in the VANET. The proposed methodology secures fast communication emergency messages to prevent secondary accidents by validating the message sources, nodes will accept only the messages from RSU which are digitally signed and source validated against Sybil nodes. The performance evaluation is made with existing methodology and effectiveness of the proposed methodology results demonstrated in article. The spatial location and trajectory of attacker is learnt effectively with RSU cooperation in the proposed work.

Chen Chen,Xin Wang,Weili Han,Binyu Zang

DOI: https://doi.org/10.1109/ICDCSW.2009.48

2009-01-01

Abstract:The Sybil attack is one of the serious attacks to Vehicular Ad Hoc Networks (VANETs), because it severely damages the security of VANETs and, even leads to a threat to lives of drivers and passengers. In this paper, we propose a solution to detect the Sybil attack based on the differences between the normal motion trajectories of vehicles and the abnormal ones. In our approach, each node can accomplish the attack detection independently with the limited assistance from the infrastructures of VANETs. We improve the feasibility of our approach with limited infrastructures at the early deployment stages of VANETs. In addition, the independency and feasibility of our algorithm are more robust than the existing solutions that rely on collaboration of neighboring nodes. Simulation results show that the proposed method outperforms the existing solutions in terms of robustness, detection rate, overhead efficiency, and lower system requirements.