Research Student Profile

Home People Profile...

Dr Shukor Razak PhD

Research Student

Brief biographical information

Access thesis on-line

Two-Tier Intrusion Detection System for Mobile Ad Hoc Networks

Nowadays, a commonly used wireless network (i.e. Wi-Fi) operates with the aid of a fixed infrastructure (i.e. an access point) to facilitate communication between nodes when they roam from one location to another. The need for such a fixed supporting infrastructure limits the adaptability of the wireless network, especially in situations where the deployment of such an infrastructure is impractical. In addition, Wi-Fi limits nodes’ communication as it only provides facility for mobile nodes to send and receive information, but not reroute the information across the network. Recent advancements in computer network introduced a new wireless network, known as a Mobile Ad Hoc Network (MANET), to overcome these limitations.

MANET has a set of unique characteristics that make it different from other kind of wireless networks. Often referred as a peer to peer network, such a network does not have any fixed topology, thus nodes are free to roam anywhere, and could join or leave the network anytime they desire. Its ability to be setup without the need of any infrastructure is very useful, especially in geographically constrained environments such as in a military battlefield or a disaster relief operation. In addition, through its multi hop routing facility, each node could function as a router, thus communication between nodes could be made available without the need of a supporting fixed router or an access point. However, these handy facilities come with big challenges, especially in dealing with the security issues. This research aims to address MANET security issues by proposing a novel intrusion detection system that could be used to complement existing prevention mechanisms that have been proposed to secure such a network.

A comprehensive analysis of attacks and the existing security measures proved that there is a need for an Intrusion Detection System (IDS) to protect MANETs against security threats. The analysis also suggested that the existing IDS proposed for MANET are not immune against a colluding blackmail attack due to the nature of such a network that comprises autonomous and anonymous nodes. The IDS architecture as proposed in this study utilises trust relationships between nodes to overcome this nodes’ anonymity issue. Through a friendship mechanism, the problems of false accusations and false alarms caused by blackmail attackers in global detection and response mechanisms could be eliminated. The applicability of the friendship concept as well as other proposed mechanisms to solve MANET IDS related issues have been validated through a set of simulation experiments. Several MANET settings, which differ from each other based on the network’s density level, the number of initial trusted friends owned by each node, and the duration of the simulation times, have been used to study the effects of such factors towards the overall performance of the proposed IDS framework. The results obtained from the experiments proved that the proposed concepts are capable to at least minimise if not fully eliminate the problem currently faced in MANET IDS.

Dr Shukor Razak

Director of studies: Prof Steven M Furnell
Other supervisors: Dr Nathan L Clarke, Dr Phil Brooke

Journal papers

A Friend Mechanism for Mobile Ad Hoc Networks
Razak SA, Samian N, Ma’arof MA, Furnell SM, Clarke NL, Brooke PJ
Journal of Information Assurance and Security, Volume 4, Issue 5, pp440-448, 2009
More details

Friend-assisted intrusion detection and response mechanisms for mobile ad hoc networks
Razak SA, Furnell SM, Clarke NL, Brooke PJ
Ad Hoc Networks, Volume 6, Issue 7, September, pp1151-1167, 2008
More details | External link available

2 Journal papers

Conference papers

Building a Trusted Community for Mobile Ad Hoc Networks Using Friend Recommendation
Razak SA, Furnell SM, Clarke NL, Brooke PJ
Ad-Hoc, Mobile, and Wireless Networks, LNCS, vol: 4686/2007, pp129-141, 2007
More details | External link available

A Two-Tier Intrusion Detection System for Mobile Ad Hoc Networks – A Friend Approach
Razak SA, Furnell SM, Clarke NL, Brooke PJ
Proceedings of the IEEE International Conference on Intelligence and Security Informatics Conference (ISI 2006), San Diego, CA, USA, pp590-595, May 23-24, 2006
More details | External link available

A Two-tier Intrusion Detection System for Mobile Ad Hoc Networks
Razak SA, Furnell SM, Brooke PJ
Proceedings of the Fourth European Conference on Information Warfare and Security, Glamorgan, South Wales, 11-12 July, 2005
CD Only Proceedings
More details

Attacks against Mobile Ad Hoc Networks Routing Protocols
Razak SA, Furnell SM, Brooke PJ
Proceedings of 5th Annual Postgraduate Symposium on The Convergence of Telecommunications, Networking & Broadcasting, PGNET 2004, Liverpool, UK, 28-29 June, pp147-152, 2004
More details

4 Conference papers

6 publication(s) - all categories.