availability based trust model of clusters for manet
DESCRIPTION
Availability Based Trust Model of Clusters for MANET. Key Laboratory for Information System Security of Ministry of Education, Tsinghua University. 1. Introduction. 2. Related Work. 3. Availability Based Trust Model. 4. Trust Computation of Cluster. 5. Conclusion. Content. - PowerPoint PPT PresentationTRANSCRIPT
Zhiyang You
Availability Based Trust Model of Clusters for MANET
Key Laboratory for Information System Security of Ministry of Education, Tsinghua University
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Introduction of MANET
Mobile Ad Hoc Network(MANET) sometimes called a mobile mesh network, is a self-configuring network of mobile devices connected by wireless links.
MANET Problems
MANET is particularly suitable in the environment which lacks of infrastructure to build a temporary wireless application , mainly used in military, emergency rescue and civil operations, and has become a research hotspot.
MANET characteristics No infrastructure Multi-hop network Dynamic topology Resource constraint Those characteristics lead to an urgent need for the
security of the MANET network
MANET Security Mechanism Research
Proposed security mechanism for MANET Based on Distributed Centre Key Management Scheme(DCA) Based on Certificate Chain Key Management Scheme (CC) Trust-based Security Management Solution ……
Traditional PKI programs focus mostly concentrated in the confidentiality , and integrity on the availability is considered insufficient.
Trust-based safety programs can play a role in the availability of protection, but not proposed for the availability of the trust model.
Summary
MANET ’s characteristics which is no infrastructure, multi-hop network, dynamic topology, and resource constraint lead to an urgent need for the security.
At present, many MANET security solutions has been proposed, but the consideration for availability is insufficient.
The establishment of the trust model for usability, and applied to routing protocols.
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Related research categories
At present, domestic and foreign made many security mechanism for MANET, in accordance with the deployment of security mechanisms can be divided into two broad categories: Pre-configuration security mechanism
• DCA: Distribute Certificate Authority• Improvement of DCA
security mechanism of self-organized• CC: Certificate Chain• Trust model safety program
– Distributed trust model– Experience and probability statistics based trust model– Subjective logic modeling– Vector trust model
Related research——DCA
The core idea of DCA is to distribute all or part of the trusted certificate authority functions in the traditional wired network to the pre-configured nodes of multiple networks. Then these nodes will provide security service to the network customers.
Problems : DCA network nodes need to act as pre-configured, it is difficult to
meet the dynamic nature of MANET and temporary network requirements;
Because the need for pre-deployment, DCA current MANET network segmentation for not very effective solution, the situation appears CA is not complete, can not guarantee the availability of MANET networks;
For resource-constrained MANET environment, the distributed threshold-based certification program for causing excessive network communication overhead, but also affect the network availability.
Related research——CC
CC was required for DCA shortcomings of pre-configured security mechanisms proposed, and its main idea is to pass through the certificate chain to build the network trust.
Problems: Efficiency: When more nodes in the network, each node needs
to maintain a huge certificate graph, and also to the ongoing public-key operation, which means that CC can not cope with large-scale network applications;
CC certification is based on close contact in exchange for trust relationship established: two nodes of the certificate exchange channel through additional credibility and build on the exchange of certificates based on close contact of both. But in the MANET network, most nodes are unknown, the trust relationship between nodes can not simply built on the basis of close contact.
Related research—Distributed trust model
Distributed trust model, Abdul-Rahman and other people start from the basic concept of trust, suggesting a kind of trust model for opening network environment. The biggest contribution of this model is that it is the first time to divide trust relationship into direct trust and recommended trust and the subcategories of this trust relationship are widely accepted. In addition, this model adopts a series of discrete values to measure trust relationship and the delivery method of trust degree is given, but there is no integrated method of giving trust.
Problems: Not given integrated method of giving trust.
Related research——Experience and probability statistics based trust model
Experience and probability statistics based trust model is proposed by Beth, who introduced the concept of experience to express and measure trust and to use methods of probability and statistics, given the transfer of trust and comprehensive formula.
Problems: Lack of trust in subjective considerations.
Related research—Subjective logic modeling
Subjective logic modeling is proposed by Jøsang and other people. They use the subjective logic to build the model, describe and measure the trust relationship by introducing the concept of space of fact and space of idea. It includes the uncertain judgment of something happened and provides a set of subjective logic operators for the derivation of trust degree and composite calculation.
Problems: Mainly used for e-commerce.
Related research——Vector trust model
Vector trust model is proposed by Indrajit and other people who use vector to describe the trust relationship. It emphasizes that trust must exist in some specific contexts. This model is mainly relying on three parameters: experience, knowledge and recommendation. Based on these three parameters, we can get the quantitative denotation of trust. Comparing with subjective logic modeling, vector trust model is more suitable for the MANET environment.
Problems: Its consideration towards MANET availability is not
enough.
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Analysis of MANET Availability
The most easily achieved and at the same time the most devastating attack in MANET is attacks against the availability. such as black hole attacks, DOS attacks. And as a special and temporary assignments for the network, especially for some of the contingency environment, MANET availability is extremely important.
key parameters of MANET availability Honest collaboration
• Only with the collaborated ability of network nodes can the connection of network be guaranteed to achieve the availability of MANET.
ability• There are diversities existing in various nodes in MANET so the
capable ones are always busy. It not only increases the network efficiency, but also reduces the resource consumption of the weak nodes so that improves the overall network availability.
The Establishment of Availability Trust Model
Security trust: the security trust of MANET is the trust of node can response the request promptly, correctly answer promptly, deliver and transfer the data pack promptly to node .
Establishment of Security Trust
Honest assessment of the main objectives of the trust in collaboration is to determine the credibility of the node, to encourage honest and cooperative behavior of nodes to exclude malicious nodes.
This paper considers collaborative trust the honesty of the node should include three aspects: Safety behavior trust Negative trust Experience trust
Safety behavior trust
Safety behavior trust is a node of the target node, the trust has complied with the network behavior.
Negative trust
Negative trust is due to the malicious behavior of malicious nodes in the network that produces negative.
MijT
Experience trust
experience trust means the experience of some certain trusted nodes in the network creates the trust.
If in the below formula represents experience trust, then
Since experience trust is the trust produced by safety behavior trust and negative trust, and it varies according to both, their relationship is as below formula:
0: RT Iji
IjiT
)()()()(
210
Mji
Cji
Iji
Iji TTTd
Td
诚实协作信任的计算And the security trust can be
formalized as:
This paper suggests the following pre-assessment formula of security trust:
))(),(),(()( Iji
Mji
Cji
Sji
Sji TTTTT
)()()(
)()(
Iji
Mji
Cji
CjiS
ji TTT
TT
The Establishment of Ability Trust
Ability trust mainly means the extent of ability capacity of some certain nodes which participate in the web collaboration to create trust.
Trust Calculation of ABTM
Model Assumption:
Integrated Calculation of Trust Model
Integrated Calculation of Trust Model
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Content
1. Introduction
2. Related Work
3. Availability Based Trust Model
4. Trust Computation of Cluster
5. Conclusion
Conclusion
Based on the analysis of availability related factors in MANET, we present an availability based trust model in this paper. Furthermore, a cluster based trust model (ABTMC,Availability Based Trust Model of Clusters) is presented with the consideration with the resource constrain of node, dynamic topology, and the unbalance of computing capability and resource capability among MANET nodes. Many availability oriented security service can be obtained based on this model.
Zhiyang You
www.themegallery.com