Loading presentation...

Present Remotely

Send the link below via email or IM

Copy

Present to your audience

Start remote presentation

  • Invited audience members will follow you as you navigate and present
  • People invited to a presentation do not need a Prezi account
  • This link expires 10 minutes after you close the presentation
  • A maximum of 30 users can follow your presentation
  • Learn more about this feature in our knowledge base article

Do you really want to delete this prezi?

Neither you, nor the coeditors you shared it with will be able to recover it again.

DeleteCancel

Hardening Opportunistic HIP - HOH

Using fictitious nodes to mitigate node isolation attack in OLSR
by

Ariel Stulman

on 19 March 2017

Comments (0)

Please log in to add your comment.

Report abuse

Transcript of Hardening Opportunistic HIP - HOH

Hardening Opportunistic HIP
Intro:
AAPELE Cost Action Meeting
Ancona, Italy - March 14, 2017
Spraying
Spray base exchange (BEX) messages on
multiple paths
available for communication
Use
multi-homing
capabilities of HIP to spray BEX messages on
multiple networks
purpose:
circumvent
a praying attacker
purpose:
It is far more
complex
to take over
different
communications mediums than a single one
Split a
single
BEX message, and send
multiple parts
over
multiple paths
or networks
purpose:
detect
a attack even on a single BEX message
Results
Network
spraying
increases
the resilience of opportunistic HIP:
Message
spraying actually
decreases
the security
increase
DoS
increase
in capture probability
Dr. Ariel Stulman
stulman@jct.ac.il

{
Dr. Ariel Stulman
;
Faculty member at the
Jerusalem College of Technology
;
Mobile security
;
cyber@JCT
;
}
"name":
"position":
"research interest":
"group":
.
Purpose
To facilitate
multi-homing
and
mobility
:
Traditional TCP/IP networks use IP for
both
identity and location
Cannot work for
world of IoT
The basis for much of
Assisted Living
Security
Based on
public key cryptography
mechanisms to provide confidentiality
Initial exchange of keys is based on other secure mechanisms
e.g. DNSSEC
Opportunistic
When no secure mechanism pre-exists, HIP takes a LoF
Leap of Faith
HIP
RFC 7401
Multi-path
Network spray
Message spray
Ad-El Fuchs, Ariel Stulman, Andrei Gurtov
Security Issues
MiTM Attacks
Lacks authentication
Thank you !
Full transcript