TY - GEN
T1 - Short paper
T2 - 1st International Conference on Security and Privacy for Emerging Areas in Communications Networks, SecureComm 2005
AU - Liu, Yu
AU - Li, Yang
AU - Man, Hong
PY - 2005
Y1 - 2005
N2 - In this paper, we propose a node-based intrusion detection system (IDS) for wireless ad hoc networks. Specifically, we define a feature set that correlates information from MAC layer and network layer to profile normal behaviors of mobile nodes, and we also adapt a rule-based data mining technique for anomaly detection. The proposed IDS is able to effectively detect an attack and is able to localize the attack source within one-hop perimeter. False positive rate is reduced through the decision module of the IDS where intelligence gathered from neighbor nodes is used to make a collaborative decision and Bayesian network is used to evaluate multiple attack sources. We validate our work through ns-2 simulation experiments. Experimental results show the effectiveness of our method.
AB - In this paper, we propose a node-based intrusion detection system (IDS) for wireless ad hoc networks. Specifically, we define a feature set that correlates information from MAC layer and network layer to profile normal behaviors of mobile nodes, and we also adapt a rule-based data mining technique for anomaly detection. The proposed IDS is able to effectively detect an attack and is able to localize the attack source within one-hop perimeter. False positive rate is reduced through the decision module of the IDS where intelligence gathered from neighbor nodes is used to make a collaborative decision and Bayesian network is used to evaluate multiple attack sources. We validate our work through ns-2 simulation experiments. Experimental results show the effectiveness of our method.
UR - http://www.scopus.com/inward/record.url?scp=33847315660&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=33847315660&partnerID=8YFLogxK
U2 - 10.1109/SECURECOMM.2005.36
DO - 10.1109/SECURECOMM.2005.36
M3 - Conference contribution
AN - SCOPUS:33847315660
SN - 0769523692
SN - 9780769523699
T3 - Proceedings - First International Conference on Security and Privacy for Emerging Areas in Communications Networks, SecureComm 2005
SP - 418
EP - 420
BT - Proceedings - First International Conference on Security and Privacy for Emerging Areas in Communications Networks, SecureComm 2005
Y2 - 5 September 2005 through 9 September 2005
ER -