A security policy-based approach to control periodic, strong reauthentications in MANET scenarios

PDF

Authors
  1. Salmanian, M.
  2. Hu, J.
  3. Pan, L.
  4. Li, M.
  5. Tang, H.
Corporate Authors
Defence R&D Canada - Ottawa, Ottawa ONT (CAN)
Abstract
A route–bound Security Association (SA), established by strong authentication, between a node pair in a Mobile Ad hoc Network (MANET) could be lost when its route is disconnected. In contrast, in good channel conditions and stable topology, routing protocols such as the Optimized Link State Routing (OLSR) do not refresh routes periodically, and in doing so, a SA bound to these routes could become stale and out of date. In either case, intermittent or indefinite duration of a SA does not lie with a security policy. In this paper we demonstrate the high cost of strong authentication without a security policy and we will show that as result of policy control that cost diminishes. We demonstrate a decoupling of the maintenance of the SAs from the link state conditions by introducing a timer that defines the lifetime of the SAs, as well as the periodicity of strong authentications. This timer is implemented within a state machine that also manages other aspects of the authentication process. The timer value can be set by a security policy to control the SA duration. We provide a detailed design for implementing a strong authentication algorithm with a state machine and a trust-enhanced routing table (TRT), originally introduced for secure routing. We discuss that our design and enhancements to the OLSR routing table are beneficial for monitoring and maintaining SAs of authenticated peers in a MANET. However, we also discuss that if the SAs’ maintenance (establishment and remov

Il y a un résumé en français ici.

Report Number
DRDC-OTTAWA-TM-2011-112 — Technical Memorandum
Date of publication
01 Aug 2011
Number of Pages
86
DSTKIM No
CA035624
CANDIS No
535398
Format(s):
Electronic Document(PDF)

Permanent link

Document 1 of 1

Date modified: