Classification of Security attack in Vehicular Adhoc network: A survey

Transcription

1 Classification of Security attack in Vehicular Adhoc network: A survey Swapnil G. Deshpande Arts, Commerce, Science College, Kiran Nagar, Amravati, Maharashtra, India Abstract: Vehicular ad hoc networks (VANETs) have attracted a lot of attention over the last few years. VANETs are being used to improve road safety and enable a wide variety of value-added services. Here we discuss some of the main security threats and attacks that can be exploited in VANETs and present the corresponding security solutions that can be implemented to prevent those attacks. In this work, we have done a survey of existing approaches to solve the problems associated with vehicular networks. The main contribution of this paper is to classify and identify different types of attacks in VANET. For the implementation of VANET, security is an important constraint. Most of the research concerted efforts in academics and industry are focused to provide efficient security architecture for VANET; to protect the network from adversary nodes and attacks. This paper focuses on the security challenges in VANET, especially for achieving privacy and their possible solutions. Keywords - Vehicular Ad hoc Network (VANET), attackers, attacks, Security 1. Introduction Security, however, has always been an issue in vehicular networks which must be seriously considered and a security infrastructure has to be designed and implemented in such networks. An attacker can inject false and invalid traffic messages into the network to distract drivers from choosing a specific route, or can use the network to determine a driver s location or identity. On the other hand, by gaining unauthorized access in network, an attacker can gain the control of critical components of a vehicle and cause irreparable damage to the vehicle or its passengers. One of the main challenges in VANET is to route the data efficiently from source to destination. Designing an efficient routing protocol for VANET is tedious task. Also because of wireless medium it is vulnerable to several attacks. Since attacks mislead the network operations, security is mandatory for successful deployment of such technology. This survey paper has been made to identify major security issues and challenges. There are several applications of vehicular networks which are discussed by manufacturers and also academics which will be both time and money saving. There have been numerous solutions and methods in order to improve the efficiency, privacy and security of such networks. Security, however, has always been an issue in vehicular networks which must be seriously considered and a security infrastructure has to be designed and implemented in such networks. In our work, we found that vehicular networks in general have several vulnerabilities and are exposed to different cyber attacks. Last few years, vehicular network has been taken more attention of researchers and automotive industries due to life saving factor. Vehicular Ad hoc Network (VANET) needs security to implement the wireless environment and serves users with safety and non safety applications. ers generate different attacks in this life saving vehicular network. VANETs are wireless ad-hoc networks where the nodes, be it vehicles or RSU, can communicate and exchange data for purposes of information inquiry or distribution. The ultimate goal of VANETs is to enhance the driving experience and increase the level of safety for drivers. This can be achieved by allowing nodes within certain ranges (typically 5-10 Km) to connect with each other in order to exchange information (Raya et.al., 2006; Nadeem et.al. 2005; Dornbush & Joshi, 2007; Schoch, 2008). Figure shows a general view of VANETs structure. Figure 1 The basic structure of VANET One transportation system that has recently attracted a lot of attention from both academia and industry is vehicular ad hoc networks (VANETs). They constitute the basis of ITS. They enable vehicles to actively communicate with each other and to better perceive the traffic situation (such as accidents and traffic jams) in their vicinity. VANETs enable vehicles to avoid problems either by taking desired actions or by alerting other drivers. Besides road safety enhancements, the advent of VANET also opens up opportunities for many VANET-related applications (such as internet access from a car) that have great potential in enhancing our travelling comfort. VANETs Volume 2, Issue 2 March April 2013 Page 371

2 do not depend on fixed infrastructures and their nodes (known as mobile nodes) and may form networks on the fly for a variety of environments. Owing to the nature of these kinds of mobile nodes, VANETs can be challenged with frequent topology changes as well as physical threats (that create potential vulnerabilities for potential attackers). A successful attack on VANETs can have catastrophic results (such as the loss of lives) or may lead to financial losses (for payment services). Therefore securing VANETs is crucial to the design, implementation and operation of these networks [1]. Nowadays, transportation systems play an important part in our daily activities. Today major concern is to provide safety of users and safe their lives in road accidents. Safety and non safety potential applications of VANET are to ensure the safety of human life on the road. Security is the main concern of these applications where a wrong message (due to insecure environment) may directly affect the human lives. Safety and non safety messages are forwarded between the Vehicle to Vehicle (V2V) and Vehicle to Infrastructure (V2I) on this communication medium. Maxim Raya et.al [2] described the attacker model. Insider, malicious, active, and local is some example of serious level attacks. Types of attacks can be different depending on the behaviour of attackers. Our focus point is too safe the communication medium by controlling attackers. Active and passive safety applications [3] are used to provide safety to users. The role of active safety is high and it sends warning messages to other vehicles. If attackers change these messages then accidents become a part of the network and users life can be on risk. Each vehicle comprises of hardware unit for determining correct location information using GPS. Roadside Units (RSUs) are placed across the road for infrastructure communication. The number of RSU to be used depends upon the communication protocol. Several factors like the type of the road, daytime, weather, traffic density and even the driver himself affect the movements of vehicles on a road. Hence, the network topology change frequently, and the routing protocol used has to adapt itself to these instantaneous changes continuously Scope The scope of this work is to study different types of vehicular network security issues and their countermeasures. The purpose of this paper is to find and study these vulnerabilities thoroughly and to present a solution to securing vehicular networks from unauthorized and malicious access. 2. Vehicular Ad Hoc Networks (VANET) The main idea behind VANET is providing communication among vehicles and also among vehicles and a number of fixed equipment located on the road. The main intention with VANET s is to enhance vehicles passengers safety and comfort by distributing traffic, speed control, road and weather conditions among nearby vehicles. Among its applications collision warnings, road sign alarms and automatic toll/parking payment can be mentioned. VANETs consist of a number of On-Board Units (OBU) which are located inside the vehicles and a number of Road-Side Units (RSU) which form the infrastructure of the network. OBU is a wireless gateway which can be connected to other OBUs and RSUs. Each vehicle equipped with the OBU can become a part of the network and will be able to send, relay and receive messages throughout the network. Due to its ad hoc nature, there won t be any centralized servers and vehicles are in charge of network management themselves [1]. Besides safety applications VANET also provide comfort applications to the road users. Communication in VANET is divided into two different categories: Vehicle-to-Vehicle (V2V) Communication, were the nearby vehicles will communicate traffic and road conditions to one another Vehicle-to-Infrastructure (V2I) Communication, were vehicles communicate their gathered information to the nearest RSU in order to distribute the information faster and more effectively. 2.1 Security Requirements Of VANET In order to have a secure and dependable vehicular network, a number of security requirements must be considered. Some of these security requirements are the same for all networks but some are valid and specific to vehicular networks only. With respect to the mentioned attacks and vulnerabilities securing vehicular communications in all aspects is a must. Here we provide a list of some general security requirements that must be taken into consideration in order to mitigate vulnerabilities and attacks against VANETs. As far as security requirements are concerned the applications of VANET are focused on safety messaging, cooperative driving, toll application etc. Therefore the integrity, liability of message, liability of the user has to be ensured and at the same time privacy has to be looked upon. A secure VANET system should satisfy following requirements: Authentication Despite the lack of need for confidentiality, network nodes must be authenticated in order to be able to send messages through the network. Before reacting to messages and events a vehicle must verify the legitimacy of the message and its sender, therefore there is a need for authentication. Without authentication, illegitimate and malicious users can inject false messages into the network and confuse other vehicles by distributing false Volume 2, Issue 2 March April 2013 Page 372

3 information. With authentication, vehicles can simply drop messages from unauthenticated users Authorization Authorization is on a higher level implemented by access control which itself is defined by network policies. Authorization defines the role of a node in the network which includes the types of messages a node can read or write on the network, actions it is allowed to take and generally the protocols that it can execute Data Consistency In addition to authenticating the sender, the consistency of messages with similar ones regarding time and location must also be considered, because false messages from legitimate senders are not impossible. It is extremely important for warning messages to meet the time and location constraints. A warning message must be shown to the driver before it is too late to react and also before passing the corresponding geographic location of the warning Confidentiality Since security in vehicular networks is related to safety, all network users should normally have full access to network data, i.e. traffic information, road conditions, etc. in order to make informed decisions. Since messages in VANETs don't contain any sensitive information and are not confidential, there is no need for encryption and confidentiality is not an important issue. Therefore, vehicular networks do not have to be protected against eavesdropping. However, network data should be sent from authenticated sources and this can be done by source authentication Integrity All messages which are sent and received on the network should be protected against alteration attacks. A secure vehicular network should provide protection against message alteration. A message can be altered in several ways during its transit from source to destinations and all possible attacks must be considered. When it comes to integrity there are three main threats directly related to message contents. System threats regarding integrity include (1) wrong or forged messages, (2) messages which are modified during transmission and (3) replayed messages Availability Since vehicular networks require real-time responses, they are vulnerable to DoS attacks. In order to remain operational, protocols and services must be resilient against denial of service attacks. The communication channel must be available at all times, it must also be reliable otherwise attackers can launch DoS attacks. Such attacks can disrupt the entire network which will lead to failure in delivering network messages to other vehicles in range. Therefore they must be securely designed and be fault-tolerant in order to work under faulty conditions. There are a couple of security measures such as channel monitoring which is a means to increase channel availability. Besides, new technologies are always under development which will try to increase availability in communication channels. Although availability can never be completely guaranteed, yet there are still a couple of security measures such as channel monitoring which is a means to increase channel availability. Besides, channel switching and using different communication technologies in case of jamming attacks can be helpful Non Repudiation When a node sends out a message, it shouldn t be able to later deny sending that message. In case of accidents or investigations, problem-causing drivers should be reliably identified, to correctly address the sequence and contents of exchanged messages. This can be done by signing outgoing messages with an anonymous key exclusively related to the sender and also a time- stamp associated to the message preventing the user to claim that a particular message has been replayed. In case of using digital signatures, each message is signed with its private but anonymous key. Therefore the vehicle owner cannot claim that he hasn't sent the message Privacy Driver privacy is an important issue in vehicular communications. Drivers don t want their personal and private information to be accessible by others. Since the vehicle information such as location, speed, time and other car data are transmitted via wireless communication, there should not be possible to infer the driver's identity from this information. Among this information, driver's location and tracing vehicle movements are more sensitive and must be taken into consideration carefully. Regarding this issue we come to another requirement called anonymity which is discussed below Anonymity Anonymity defines the requirement that network nodes must not be able to infer if a node performed or will perform some specific action in future. In order to prevent such inferences, there must be an equal probability of doing a specific action by all nodes, or have strong probabilistic anonymity, with the probabilities being equal for all nodes. By not requiring a vehicle to authenticate with its exact identity to other vehicles to which it sends information Real-time Constraints In order to have vehicular networks secured, specific measures and techniques have been suggested. Although these techniques seem applicable and useful, there is one important issue that must be taken into account, real-time Volume 2, Issue 2 March April 2013 Page 373

4 constraints. Out-dated messages, e.g. out-dated traffic or road/weather conditions, are of no use in vehicular networks and must be eliminated in order to let the newly generated messages get to their destinations on time. On the other hand, solutions such as digital signatures and certificates must be designed specifically for vehicular networks in order to fulfill real-time constraints of such networks. 3. Security challenges in VANETs Despite the various benefits offered by VANETs, they introduce several security challenges to the research community. These security challenges are mostly concerned with the trade-off between authentication and nonrepudiation versus privacy during communication within VANET environments. Another security challenge is delay sensitivity because significant delays prohibit the use of security protocols that have high overheads or rely on multiple stages of full-duplex communication between nodes [4,5]. The use of traditional authentication mechanisms to address some security threats (such as illusion attacks) without affecting privacy in VANETs poses a new challenge for those VANET applications that need to authenticate nodes in VANETs [6,7]. The other challenge is the restriction introduced by the transitory nature of interactions in a VN to use reputation-based schemes [8]. Another VANET security challenge is the forwarding of event-related messages on very large ad hoc networks of highly mobile nodes in such a way that the information can be trusted by receiving nodes because by doing so we improve traffic safety and mobility [9]. All these challenges need to be addressed to provide a secure VANET infrastructure where nodes (vehicles) can communicate securely with each other and infrastructure units. Table 1 Summary of security attacks in VANETs 11 This survey paper identify major security issues and challenges associated with different routing protocols. Third Type: Timing Forth Type: Social Fifth Type: Monitoring First Type: s on availability 1.Black Hole 2.Malware 3.Broadcast Tampering 4.Spamming 5.Greedy Drivers 6.Denial of Service Second Type: s on Authentication/ identification 1.Masquerading 2.Replay 3.Global Positioning System (GPS)Spoofing 4.Tunneling 5.Sybil Ref. Objective No. 10 In this paper, we propose five different classes of attacks and every class is expected to provide better perspective for the VANET security. The main contribution of this paper is the proposed solution for classification and identification of different attacks in VANET. Types of First Type: Network 1. Denial of service (DOS) 2.Distributed Denial of service (DDOS) 3.Sybil 4.Node Impersonation Second Type: Application (AP) 12 This paper aims to describe and analyze the most representative 6.Message Tampering 7.ID Disclosure Third Type: s on confidentiality Fourth Type: s on privacy Fifth Type: s on non-repudiation Sixth Type: s on data trust First Type : s on identification and authentication Volume 2, Issue 2 March April 2013 Page 374

5 VANET security developments 1.Impersonation. 1.1False attribute possession. 2. Sybil. Second Type: s on privacy 1.Identity revealing. 2. Location tracking. Third Type: s on non-repudiation Fourth Type: s on confidentiality Fifth Type: s on availability 1.Network Denial of Service (DoS) 1.1Routing anomalies. 13 In this paper, we have classified different security attacks and logically organized/represente d in a more lucid manner based on the level of effect of a particular security attack on intelligent vehicular traffic. 1.Malicious nodes 2.Illusion attack Fifth Type: Location 1.Forging positions and Sybil attacks 2.Position cheating and false position disseminating First Type: Network s 1.Denial of service (DOS) 2.Distributed Denial of service 3.Sybil 4.Node Impersonation Second Type: Application 2.Computation DoS. Third Type: Timing 1 This paper discusses some of the main security threats and attacks that can be exploited in VANETs and present the corresponding security solutions that can be implemented to thwart those attacks. Sixth Type: s on data trust First Type: Anonymity 1.Malicious Vehicle Second Type: Key management 1.Brute force attack: 2. Misbehaving and faulty nodes Third Type: Privacy 1.Malicious user 2.Traffic analysis attacks Fourth Type : Reputation 14 Finally, we outline some of the VANET research challenges that still need to be addressed to enable the ubiquitous deployment and wide spread adoption of scalable, reliable, robust, and secure VANET architectures, protocols, technologies, and services. Fourth Type: Social Fifth Type: Monitoring First Type: Threats to availability 1.Denial of Service 2.Broadcast Tampering 3.Malware 4.Spamming 5.Black Hole Second Type: Threats to authenticity 1.Masquerading Volume 2, Issue 2 March April 2013 Page 375

6 2.Replay 3.Global Positioning System (GPS) Spoofing 4.Tunneling 5.Position Faking 6.Message Tampering 7.Message Suppression/ Fabrication/ Alteration 8.Key and/or Certificate Replication 9.Sybil Third Type: Threats to confidentiality 4. PROPERTIES OF ATTACKERS er create problem in the network by getting full access of communication medium DSRC. Here we are discussing some properties and capability of the attackers which has been mentioned in studies. Insider This type of attackers who is an authentic user of the network and have detail knowledge of network. Insider attacker might have access to insider knowledge and this knowledge will be used for understanding the design and configuration of network. When they have all information about the configuration then it s easy for them to launch attacks and create more problem as compare to outsider attacker. It can create problem in the network by changing the certificate keys. We can simply say that insider attacker is the right man doing the wrong job in the network. Outsider The outsider attacker is considered as an authentic user of the network. It is a kind of intruder which aims to misuse the protocols of the network and the range of such attacks are limited. Outsider attacker also has a limited diversity for launching different kind of attacks as compare to insider attacker. Coverage area Coverage area is the main property of attacker when they launch any kind of attacks. er could cover the main area of road, and it depends on the nature of the attacks. Basic level attacker has controlled one DSRC channels and covers the range of at most 1000 meters but the extended level attackers are more organized and cover more area using of hundred DSRC channels. Technical Expertise Technical expertise of the attacker makes them stronger for creating attacks in the network. It is difficult for attacker to mount attacks on cryptographic algorithms. Chance is low for attacker to compromise the infrastructure network and data capture from restricted area of network. er having ability to extracts the program code and secret keys of the computing platform of OBU and RSU by launching physical attacks. Resources Budget, manpower and tools are the three main key resources and attackers depend on it to achieve their goals. Need budget to borrow technical expert and spend time to understand the configuration of specific network and then disturb network with launching of different kind of attacks. er can use different kind of tools for launching attacks. These software tools can develop by own self or buy from the market. Many business parties make setup their business nears the road and provide non safety application services (Internet, entertainment services). One business party can be used their own maximum resources to create problems for other parties and destroy their business with different kind of attacks. 5. Conclusion and Future work In this paper various attacks in VANET have been classified. It has been observed that the classification helps to deal with different types of attack on VANET. Due to recent improvements in connecting vehicles to external networks, proper security mechanisms must be developed in parallel to reduce the risk of malicious and unauthorized behavior in the vehicular network domain. Users require safety on road in future vehicular network and it could be possible by implementing VANET applications. We expect that the proposed attacks classes may helpful to identify attacks and understand attackers. It is difficult to control attackers but in future work we will develop such system to identify attacks in network with respect to some specific type of attack. Implementation could be easy of this future human life saving network if we control attackers and their attacks. In this work, we have analyzed the attacks that VANETs can be subjected to. Table provides a summary of the security attacks we have identified that may be launched on VANETs and the corresponding security solutions to mitigate those attacks. I hope that this survey will enable VANET designers and developers to build more secure and robust VANET architectures, protocols and applications in the future. Volume 2, Issue 2 March April 2013 Page 376

7 REFERENCES [1] J.T. Isaac S. Zeadally J.S. Ca mara Security attacks and solutions for vehicular ad hoc networks IET Communications [2] M. Raya, J. Pierre, Hubaux, Securing vehicular ad hoc Networks Journal of Computer Security,vol.15, january 2007, pp: [3] A.Weimerskirch,J.J Haas,Y.C.Hu,K.P.Laberteaux, Data security in vehicular communication networks,chapter no.09, pp [4] BURMESTER M., MAGKOS E., CHRISSIKOPOULOS V.: Strengthening Privacy protection in VANETs. IEEE Int. Conf. on Wireless & Mobile Computing, Networking & Communication (WIMOB 2008), 2008, pp [5] JAKUBIAK J., KOUCHERYAV Y.: State of the art and research challenges for VANETs. Fifth IEEE Consumer Communications and Networking Conf. (CCNC 2008), 2008, pp [6] XI Y., SHA K., SHI W., SCHWIEBERT L., ZHANG T.: Enforcing privacy using symmetric random keyset in vehicular networks. Eighth Int. Symp. on Autonomous Decentralized Systems (ISADS 2007), 2007, pp [7] LO N., TSA H.: Illusion attack on VANET applications a message plausibility problem. IEEE Globecom Workshops, 2007, pp. 1 8 [8] PARNO B., PERRIG A.: Challenges in securing vehicular networks. Fourth Workshop on Hot Topics in Networks (HotNets-IV), 2005 [9] FLORIAN D., LARS F., PRZEMYSLAW M.: VARS: a vehicle ad hoc network reputation system. Int. Conf. on a World of Wireless, Mobile and Multimedia Networks (WOWMOM 2005), 2005, pp [10] Irshad Ahmed Sumra,Iftikhar Ahmad, Halabi Hasbullah Classes of s in VANET [11] Anup Dhamgaye, Nekita Chavhan Survey on security challenges in VANET IJCSN International Journal of Computer Science and Network, Vol 2, Issue 1, [12] José María de Fuentes, Ana Isabel González-Tablas, Arturo Ribagorda Overview of security issues in Vehicular Ad-hoc Networks [13] Adil Mudasir Malla Ravi Kant Sahu Security s with an Effective Solution for DOS s in VANET International Journal of Computer Applications ( ) Volume 66 No.22, March 2013 [14] Sherali Zeadally Ray Hunt Yuh-Shyan Chen Angela Irwin Aamir Hassan Vehicular ad hoc networks (VANETS): status, results, and challenges Springer Science+Business Media, LLC 2010 Volume 2, Issue 2 March April 2013 Page 377