Abstract Towards the proliferation of architectures,
tools and applications that have the potential to beused during an emergency rescue mission, we presenta framework for emergency real-time communication
using autonomous networks, called emergency Mobile
Ad-hoc Networks (eMANETs). By eMANETs we re-fer to networks that are deployed in emergency cases
where default telecommunications infrastructure has
failed. Our goal is to design a security frameworkthat will secure real-time communications during emer-
gency rescue scenarios. The proposed framework con-
sists of a secure routing protocol, intrusion detection
provision and security extension for real-time commu-
nications using peer-to-peer overlays. We envisage thatthe results of this work will aid and serve the needs
of any society against any event that threatens seriousdamage to human welfare or to the environment.
E. A. Panaousis (B) · C. PolitisWireless Multimedia & Networking (WMN) ResearchGroup, Kingston University London, Penrhyn Road,Kingston upon Thames, KT1 2EE, UKe-mail: [email protected]
TIER 0: Connection to Emergency OperationsController Framework (EOCF)TIER 1: Mesh with SupernodesTIER 2: MANETS
TIER 1
TIER 2
EOCF
IPCLOUD
Gateway
TIER 0
ParamedicSupernode
PoliceSupernode
Fire-BrigadeSupernode
Presentation
Session
Transport
Network
Data Link
Physical
P2PSIPOverlay
Fig. 1 Communication for emergency real-time communications
of rescuers from a particular emergency team, (ii) theTier1 or else the Supernode Mesh Network consists of semi mobile nodes compared to Tier2 nodes, and (iii)
the Tier0 defines the connection between the MANET
for the rescuers and the IP cloud via a gateway.The super nodes have the following characteristics
and responsibilities:
– semi-static behavior,– provision of network connectivity within the disas-
ter area,
– interconnection to multiple Tier-2 nodes,
– construction and maintenance of a secure overlay
that is built among Tier-1 and Tier-2 nodes,– initiation of a SOS service within a specific disaster
area.
The semi mobility of these nodes should provide
easy IP route discovery and IP route maintenance forboth the Tier2 nodes and theTier1 super nodes. The key
elements of the proposed security model for emergency
real-time communication, which are described in detailin the following subsections, are (i) provision of secure
routing paths among the rescue workers when the rout-
ing tables should be adaptive to the topology changes,taking also into account the strict QoS requirements of
the emergency communications sessions, (ii) establish-
ment and maintenance of secure overlays among Tier-
1 and Tier-2 nodes for real-time communication, and(iii) an Intrusion Detection System that handles various
types of attacks from the physical up to application
layer. It is worth noting here, that in this article we
stress on network and P2PSIP security. Physical andlink layer security are considered within the realm
of intrusion detection systems which acts as a second
wall of defense when conventional security solutionshave failed or node capture attacks have succeeded to
intrude in the MANET. Also, it is assumed that well-
known standards such as IEEE 802.11i can be used as
first line of defense for those two layers but they havenot been examined further in this article.
3.1 Secure routing
Routing is a critical function of any network either
wired or wireless. Due to the fact that wired networks
do not appear any kind of mobility and they typically
have high available bandwidth, the routing protocolsdesigned for them are apparently different than the
wireless routing protocols. Especially, in MANETs re-
source constraints issues have to be taken into con-sideration before any routing solution is proposed.
In addition, mobility and the fact that there are non
trusted entities in advance within the network, stimu-late spiritually an attacker to cause devastating dam-
age to the MANET communications. In MANETs,
routing protocols (Chen and Heinzelman 2007) should
be designed so that intermediate nodes will forwardlegitimate packets towards a destination when the latter
is out of the transmission range of the source. Thus,
inviting option for adversaries. In Panaousis and Politis
(2009), we have proposed a game theoretic mechanism
based on intrusion detection systems. The mechanismreduces the probability of a blackhole attack to be
launched successfully whilst it consumes minimum en-
ergy. The mechanism is proposed for AODV but it can
be slightly modified to be applied to SCML and this is
one of our prospective targets.
Transport layer attacks In the transport layer, accord-ing to the session hijacking attack, an adversary imper-
sonates one node in the TCP three-way handshake by
determining the correct sequence number and spoofing
its IP address. After the launch of the aforementionedattack, the TCP ACK storm problem causes harmful
delay to the eMANET communications. The same at-
tack can be applied over the UDP protocol to impairthe VoIP communication links.Likewise, according to
the SYN f looding attack the adversary creates a large
number of half-opened TCP connections with a victimnode without completing the handshake in order to
fully open the connection. Specifically, the attacker
sends a several SYN packets and the victim answers
with SYN-ACK packets waiting for ACK packets thatit will never receive. As a result the victim node has so
many open connections that its buffer is overflown. In
this case, it can not receive any data from other legit-imate nodes. Although, a timeout of the half-opened
sessions is expired the attacker may still sending data
to launch the SYN flooding attacks causing a criticaldamage to an eMANET’s communication links.
Application layer attacks In the application layer repu-
diation and data corruption can be maliciously accom-plished when (i) a node does not accept to carry on a
“transaction” with another within a MANET or (ii) a
mobile virus sends probe packets to vulnerable UDP/TCP ports at several various IP addresses. As a result,
nodes get infected by the malicious entity with the most
possible consequence to be the corruption of the data.
As far as the attacks on SIP signalling are concerned,we discuss the most important of them in the following.SPIT is commonly referred to as SPam over Internet
Telephony (SPIT). In order to initiate a SPIT attacka malicious node has to find out the location of his
victims. Therefore, the malicious node sends lookup-
requests to a node of the overlay network. After gettingthe responses, the malicious node can start calling his
victims. This threat is similar to spam in the email
systems but is delivered by means of voice calls. This
leverages the cheap cost of VoIP when compared withlegacy phone systems. Such SPIT calls can be telemar-
keting calls that sell products. SPIT attacks have high
impact on the operability of an network and its nodes,
as every time a SPIT session is established, nodes have
to establish many useless connections or must acceptcalls that are annoying. As countermeasure against
SPIT attacks, a node could use a throttling mechanism
in order to accept only a limited number of requests per
second, or to integrate a time-to-live so that a lookup
has a limited hop count in the overlay network. Inaddition, flooding attacks have the potential to flood
the network while sending many requests to one ormore nodes of the network, so that the destination
nodes get distracted from working properly, and the
network is heavily loaded due to the increasing traffic.
Lastly, a blocking attack is launched by a node thatsilently drops messages that must be routed.
4 Conclusions
In this article we proposed a security model for au-tonomous networks such as MANETs to establish real
time communication during emergency rescue mis-
sions. Secure routing, secure P2PSIP and intrusion
detection techniques are crucial part of any securitymodel. We have discussed some of the aforementioned
issues within the realm of emergency MANETs and we
have emphasized in P2PSIP overlays. Two extensionsof the IETF drafts were presented and analysed in
terms of security strength and scalability. These ex-
tensions were designed to meet the requirements of a mission-critical eMANET where rescuers have to
establish communication bridges among them by using
lightweight devices such as PDAs. The secure P2P
overlays along with intrusion-detection mechanismscan provide a full and robust solution for emergency
real-time communications. We have also discussed the
case of our adaptive routing protocol and its securityextension by using IPSec. The latter has been compared
with the well known SAODV and been proved more
efficient in terms of total control load and data sent.
In future work, we intend to implement intrusion de-tection techniques against different kind of attacks. To
this end, we have already based our studies on game
theoretic tools such as Panaousis and Politis (2009).Additionally, we will show the performance evaluation
of our security and key refresh mechanisms for P2PSIP.
Finally, future work includes but it is not limited toimplement a network simulator module, which will
integrate the different functionalities of secure routing,
intrusion detection and secure P2PSIP protocol. Then,
a testbed can be implemented to evaluate the behaviourand the performance of the security model in a real life
Acknowledgements The work was undertaken in the context of the project ICT-SEC-2007 PEACE (IP-based Emergency Appli-cations and serviCes for nExt generation networks) with contractnumber 225654. The project has received research funding fromthe European 7th Framework Programme.
References
Argyroudis, P., & O’Mahony, D. (2005). Secure routing for mo-bile ad hoc networks. IEEE Communications Surveys andTutorials, 7 (3), 2–21. doi:10.1109/SNPD.2007.223.
Baset, S., Schulzrinne, H., & Matuszewski, M. (2007). Peer-to-peer protocol (P2PP). IETF Internet Draft. http://tools.ietf.org/html/draft-baset-p2psip-p2pp-01. Work in progress,November 2007.
Birkos, K., et al. (2010). Security mechanisms and key refresh for P2PSIP overlays. IETF Internet Draft. http://www.ietf.org/id/draft-birkos-p2psip-security-key-refresh-00.txt. Workin progress, March 2010.
Chen, L., & Heinzelman, W. B. (2007). A survey of rout-ing protocols that support QoS in mobile ad hoc net-works. IEEE Network Magazine, 21(6), 30–38. doi:10.1109/MNET.2007.4395108.
Clausen, T., & Jacquet, P. (2003). Optimized link staterouting protocol (OLSR). IETF Internet RFC 3626.http://www.ietf.org/rfc/rfc3626.txt.
Daemen, J., & Rijmen, V. (2002). The design of Rijndael . NewYork: Springer.
Hegland, A., & Winjum, E. (2008). Securing QoS signaling inIP-based military ad hoc networks. IEEE CommunicationsMagazine, 46(11), 42–48. doi:10.1109/MCOM.2008.4689243.
IETF (2010). P2PSIP Working Group. http://www.ietf.org/dyn/wg/charter/p2psip-charter.html.
Jennings, C., Lowekamp, B., Rescorla, E., Baset, S., &
Schulzrinne, H. (2009). Resource location and discovery(RELOAD) base protocol . IETF Internet Draft. http://tools.ietf.org/html/draft-ietf-p2psip-base-08. Work in progress,July 2009.
Kent, S., & Atkison, R. (1998). Security architecture for the Internet protocol . IETF RFC 2401. http://www.ietf.org/rfc/rfc2401.txt.
Martigon, F., Paris, S., & Capone, A. (2009). Design and imple-mentation of MobiSEC: A complete security architecturefor wireless mesh networks. Computer Networks (Elsevier), 53(12), 2192–2207. doi:10.1016/j.comnet.2009.04.002.
Panaousis, E. A., & Politis, C. (2009). A game theoretic ap-proach for securing AODV in emergency mobile ad hocnetworks. In Proc. 34th IEEE conference on local computer networks (IEEE LCN), Zurich, Switzerland (pp. 985–992).
doi:10.1109/LCN.2009.5355020.Panaousis, E. A., Ramrekha, T. A., Millar, G. P., & Politis, C.
(2010). Adaptive and secure routing for emergency mobilead-hoc networks. International Journal of Wireless and Mo-bile Networks (IJWMN), 2, 62–78.
Perkins, C., Belding-Royer, E., & Das, S. (2003). Ad hoc on-demand distance vector (AODV) routing. IETF InternetRFC 3561. http://www.ietf.org/rfc/rfc3561.txt.
Ramrekha, T. A., et al. (2010). ChaMeLeon (CML): A hy-brid and adaptive routing protocol for emergency sit-uations.. IETF Internet Draft. http://tools.ietf.org/html/draft-ramrekha-manet-cml-00.txt. Work in progress, March2010.
Sun, Y. L., Han, Z., Yu, W., & Liu, K. J. R. (2006). Atrust evaluation framework in distributed networks: Vul-nerability analysis and defense against attacks. In Proc. 25th IEEE international conference on computer com-munications, Catalunya, Spain (pp. 1–13). doi:10.1109/INFOCOM.2006.154.
Yang, H., Meng, X., & Lu, S. (2006). SCAN: Self-organizednetwork-layer security in mobile ad hoc networks. IEEE Journal on Selected Areas in Communications, 24(2), 261–273. doi:10.1109/JSAC.2005.861384.
Zapata, M. G. (2002). Secure ad hoc on-demand distance vec-tor routing. In Proc. ACM mobile computing and com-munications review (MC2R) (Vol 6., No. 3, pp. 106–107).doi:10.1145/581291.581312.
Emmanouil A. Panaousis (www.panaousis.com) is currently aresearch Ph.D. student at Kingston University, UK, Faculty of Computing, Information Systems and Mathematics (CISM). Heworks within a team on Wireless Multimedia & Networking(WMN) Research Group. Emmanouil received his M.Sc. in Com-puter Science with distinction at the Department of Informaticsof the Athens University of Economics and Business and hisB.Sc. in Informatics and Telecommunications at the National andKapodistrian University of Athens. Emmanouil has publishedmore than 15 papers in international journals and conferencesand one book chapter. Emmanouil is a student member of theBritish Computer Society, the IEEE and the IEEE Communica-tions Society.
Christos Politis is a Reader (Associate Prof.) at Kingston Uni-versity London, UK, Faculty of Computing, Information Systemsand Mathematics (CISM); where he leads a research group onWireless Multimedia & Networking (WMN) and teaches mod-ules on wireless communications in the CISM faculty. Prior tothis he was the Research and Development (R&D) project man-ager at Ofcom, the UK Regulator and Competition Authority.Christos was for many years he was a post-doc research fellowat the Centre for Communication Systems Research (CCSR) atthe University of Surrey, UK. He is/was involved with several EU(IST and ICT), national and international projects, and was theproject manager of the IST UNITE. Christos is a patent holder,and has published more than 70 papers in international journalsand conferences and chapters in two books. Christos was born inAthens, Greece and holds a Ph.D. and M.Sc. from the Universityof Surrey, UK and a B.Eng. from the Technical University of Athens, Greece. He is a member of the IEEE and TechnicalChamber of Greece.
Konstantinos Birkos received his engineering diploma from the
Electrical and Computer Engineering Department of the Uni-versity of Patras, Greece in 2006. He is a Ph.D. candidate in theWireless Telecommunication Laboratory of the same institutionand he is currently involved in the PEACE research projectunder the FP7 framework of the European Union. His main re-search interests include wireless network modeling, p2p overlays,teletraffic analysis and security of wireless ad hoc networks. Heis a member of the technical chamber of Greece.
Christos Papageorgiou received a Ph.D. degree in 2009, a M.Sc.degree in 2005 and a Diploma in 2002 from Computer Engineer-ing and Informatics Department of University of Patras, Greece.
He is currently employed as a post-doc research associate atthe Electrical and Computer Engineering Department in theUniversity of Patras, working in the context of various researchprojects. His research activities are mainly focused in the areaof ad-hoc networks. Dr. Papageorgiou has published a series of scientific papers. He speaks English, Spanish and German and isa member of the Technical Chamber of Greece.
Tasos Dagiuklas (www.tesyd.teimes.gr/cones) received the En-gineering Degree from the University of Patras-Greece in 1989,the M.Sc. from the University of Manchester-UK in 1991 andthe Ph.D. from the University of Essex-UK in 1995, all inElectrical Engineering. Currently, he is employed as AssistantProfessor at the Department of Telecommunications Systemsand Net- works, Technological Educational Institute (TEI) of Mesolonghi, Greece. He is the Leader of the Converged Net-works and Services Research Group. He is also Senior ResearchAssociate within the Wireless Telecommunications Laboratory
of the Electrical and Computer Engineering Department at theUniversity of Patras, Greece. Past Positions include teachingStaff at the University of Aegean, Department of Informationand Communications Systems Engineering, Greece, senior postsat INTRACOM and OTE, Greece. He has been involved inseveral EC R&D Research Projects under FP5, FP6 and FP7research frameworks, in the fields of All-IP network and nextgeneration services. Currently, he is the Technical Manager of the FP7-ICT-PEACE project. He was the Conference GeneralChair of the international conference, Mobile Multimedia 2007(ACM Mobimedia 2007), Technical Co- Chair of MMNS Con-ference of MANWEEK 2008, IMS Workshop Chair as part of ACM Mobimedia 2008 and Workshop Chair for ACM Mobi-media 2009. He has served as TPC member to more than 30international conferences. His research interests include FutureInternet architectures and converged multimedia services overfixed-mobile networks. Dr Dagiuklas has published more than 80papers at international journals, conferences and standardisationfora in the above fields. He is a member of IEEE and TechnicalChamber of Greece.
