Specification-based IDS for securing RPL from topology attacks

Le, Anhtuan, Loo, Jonathan, Luo, Yuan Roger ORCID logoORCID: https://orcid.org/0000-0002-9812-5543 and Lasebae, Aboubaker ORCID logoORCID: https://orcid.org/0000-0003-2312-9694 (2011) Specification-based IDS for securing RPL from topology attacks. Wireless Days (WD), 2011 IFIP . pp. 1-3. ISSN 2156-9711 [Article] (doi:10.1109/WD.2011.6098218)

[img] PDF - Published version (with publisher's formatting)
Restricted to Repository staff and depositor only

Download (248kB)


This paper focuses on the security aspect of RPL (Routing Protocol for Low-power and lossy network) by introducing a new type of threat – the topology attack, which changes the node operation for breaking the optimised network topology, and designing a specification-based IDS for detecting it. We present two novel RPL attacks of this type: the rank attack and local repair attack. We also propose an IDS architecture using network monitor backbone, and describe its monitoring mechanisms through a RPL finite state machine implemented in each monitor node. We show that our system can effectively detect these routing operation threats with a reasonable overhead.

Item Type: Article
Additional Information: Conference: 10-12 Oct. 2011; Conference Location : Niagara Falls, ON
Research Areas: A. > School of Science and Technology > Computer Science > SensoLab group
A. > School of Science and Technology > Computer and Communications Engineering
Item ID: 11129
Useful Links:
Depositing User: Yuan Roger Luo
Date Deposited: 04 Jul 2013 07:33
Last Modified: 30 Nov 2022 00:45
URI: https://eprints.mdx.ac.uk/id/eprint/11129

Actions (login required)

View Item View Item


Activity Overview
6 month trend
6 month trend

Additional statistics are available via IRStats2.