scholarly journals Security Aspects for Rpl-Based Protocols: A Systematic Review in IoT

2020 ◽  
Vol 10 (18) ◽  
pp. 6472
Author(s):  
Karen Avila ◽  
Daladier Jabba ◽  
Javier Gomez
Keyword(s):  
Routing Protocol ◽  
Directed Acyclic Graph ◽  
Network Monitoring ◽  
Mitigation Strategy ◽  
Lossy Networks ◽  
Security Issues ◽  
Information Object ◽  
Selective Forwarding ◽  
The Internet Of Things ◽  
Parent Node

The Internet of things (IoT) is a concept that has gained traction over the last decade. IoT networks have evolved around the wireless sensor network (WSN), and the following research looks at relevant IoT concepts and the different security issues that occur specifically at the network layer. This analysis is performed using a structured literature review (SLR). This form of bibliographic review has been a trend in recent years. Its strength is the performance of a bibliometric analysis that allows studying both trends in the line of research that you want to address and the relevant authors. This SLR reviews 53 proposals between 2011 and 2020, whose contribution is to mitigate attacks in the RPL (Routing Protocol for Low-Power and Lossy Networks) protocol. The revised proposals emerged after selecting keywords and databases in which to apply the search. Initially, approximately 380 research works appeared, for which it was necessary to continue using filters to refine the proposals to be included. After reading titles and abstracts, 53 papers were finally selected. In addition to analyzing the attacks mitigated in the RPL protocol, it is intended to identify the trend by which these attacks are reduced, as a result of the review, nine attacks have been found: rank, blackhole, selective forwarding, wormhole, DODAG (Destination-Oriented Directed Acyclic Graph) version number, DAO (Destination Advertisement Object) inconsistency, DIO (DODAG Information Object) suppression, Sybil, and sinkhole. Each of the 53 proposals analyzed in this review has an associated mitigation strategy, these strategies have been categorized into four groups, based on authentication or cryptography, based on network monitoring, based on secure parent node selection and other. According to the results, the authors’ primary mitigation strategy is based on network monitoring, with 30%. This review also identifies the principal authors and countries that need the development of this line of research.

scholarly journals A Review of Intrusion Detection Systems in RPL Routing Protocol Based on Machine Learning for Internet of Things Applications

2021 ◽  
Vol 2021 ◽  
pp. 1-32
Author(s):  
Ali Seyfollahi ◽  
Ali Ghaffari
Keyword(s):  
Machine Learning ◽  
Intrusion Detection ◽  
Low Power ◽  
Routing Protocol ◽  
Directed Acyclic Graph ◽  
Intrusion Detection Systems ◽  
Lossy Networks ◽  
Detection Systems ◽  
Information Object ◽  
Network Router

IPv6 routing protocol for low-power and lossy networks (RPL) has been developed as a routing agent in low-power and lossy networks (LLN), where nodes’ resource constraint nature is challenging. This protocol operates at the network layer and can create routing and optimally distribute routing information between nodes. RPL is a low-power, high-throughput IPv6 routing protocol that uses distance vectors. Each sensor-to-wire network router has a collection of fixed parents and a preferred parent on the path to the Destination-oriented directed acyclic graph (DODAG) graph’s root in steady-state. Each router part of the graph sends DODAG information object (DIO) control messages and specifies its rank within the graph, indicating its position within the network relative to the root. When a node receives a DIO message, it determines its network rank, which must be higher than all its parents’ rank, and then continues sending DIO messages using the trickle timer. As a result, DODAG begins at the root and eventually extends to encompass the whole network. This paper is the first review to study intrusion detection systems in the RPL protocol based on machine learning (ML) techniques to the best of our knowledge. The complexity of the new attack models identified for RPL and the efficiency of ML in intelligent and collaborative threats detection, and the issues of deploying ML in challenging LLN environments underscore the importance of research in this area. The analysis is done using research sources of “Google Scholar,” “Crossref,” “Scopus,” and “Web of Science” resources. The evaluations are assessed for studies from 2016 to 2021. The results are illustrated with tables and figures.

scholarly journals A Trust-based Defence Scheme for Mitigating Blackhole and Selective Forwarding Attacks in the RPL Routing Protocol

2018 ◽  
Vol 6 (1) ◽  
pp. 41-59
Author(s):  
David Airehrour ◽  
Jairo Guttierrez ◽  
Sayan Kumar Ray
Keyword(s):  
Routing Protocol ◽  
Research Work ◽  
Simulation Studies ◽  
Proof Of Concept ◽  
Lossy Networks ◽  
Main Research ◽  
Testing Method ◽  
Selective Forwarding ◽  
Testbed Experiments

The routing protocol for low-power and lossy networks (RPL) has gained prominence as the standard IoT routing protocol. However, it faces like many other routing protocols diverse attacks. Many studies have been proposed to secure the RPL protocol, and simulation studies have been put forward as the main research method, while testbed experiments, though an authentic research and testing method, have been ignored. Although testbed experiments and simulation studies have their strengths and limitations, testbed techniques could be used as a verifiable validation method for simulation studies. This study is a follow up research work to validate our simulation study, which addressed Blackhole attacks in the RPL routing protocol. In addition, Selective Forwarding attacks are also addressed. It implements a testbed while embedding our Trust-based RPL protocol and the standard RPL protocol in a smart environment configuration. Based on the test experiments, we provide a proof-of-concept of the validity of our claim that our Trust-based RPL protocol provides a comprehensive defence (simulation and testbed) against Blackhole and Selective Forwarding attacks.

scholarly journals Acknowledgement Based Technique for Detection of the Wormhole Attack in RPL Based Internet of Things Networks

2019 ◽  
Vol 8 (S3) ◽  
pp. 100-104
Author(s):  
Vikram Neerugatti ◽  
A. Rama Mohan Reddy
Keyword(s):  
Internet Of Things ◽  
Routing Protocol ◽  
Advanced Technology ◽  
Delivery Ratio ◽  
Personal Area Networks ◽  
Wireless Personal Area Networks ◽  
Lossy Networks ◽  
Wormhole Attack ◽  
Novel Approach ◽  
Selective Forwarding

Internet of Things (IoT) is the advanced technology, were the constrained nodes/things (all the objects around us such as chair, home, car, keys, etc.) will be connected to the internet to form a network, for sharing and monitoring the data, remotely. RPL (IPv6 Routing Protocol for Low Power and Lossy networks) is a routing protocol particularly designed for the constrained (low powered, low computation, less size, etc.) networks with the protocol 6LoWPAN (IPv6 Low Powered wireless Personal Area Networks). Due to the constrained behaviour of the RPL protocol, it will leads to many RPL routing attacks such as Sinkhole, Black hole, Wormhole, Selective forwarding, rank attacks, etc. This paper was focused on the Wormhole attack. The Wormhole attack will select the packets from one location and drops those packets in some other location (malicious) by forming the Tunnelling. To detect this attack here proposed and implemented a novel approach called (ADWA). Acknowledgement based technique for detection of the wormhole attack in RPL based Internet of Things networks. This approach was shown efficient results with the Telosb sky emulator nodes in the Contiki Cooja simulator, in terms of the Packet delivery ratio, delay and detection of wormhole attack.

Security Threats in the Internet of Things

2018 ◽  
pp. 147-178 ◽  
Author(s):  
Faiza Medjek ◽  
Djamel Tandjaoui ◽  
Imed Romdhani ◽  
Nabil Djedjig
Keyword(s):  
Internet Of Things ◽  
Routing Protocol ◽  
Communication Technologies ◽  
Physical World ◽  
The Internet ◽  
Lossy Networks ◽  
Key Characteristics ◽  
Pervasive Environment ◽  
And Control ◽  
The Internet Of Things

In the internet of things (IoT) vision, people, systems, and objects with sensing and/or actuating capabilities communicate to monitor and control the physical world. Nowadays, the IoT concept has attracted significant attention from different application domain such as healthcare and smart homes. Indeed, self-organization and self-configuration are key characteristics of IoT given that IoT represents a pervasive environment where objects are resource-constrained and communication technologies are very ubiquitous. These characteristics in addition to the vulnerability of objects themselves and of the communication channels make IoT more susceptible to malicious attacks. In this context, a deep analysis of IoT security breach and vulnerabilities is necessary. This chapter presents IoT requirements and existing threats as well as security protocols and mechanisms. It specifically analyzes existing and new threats against the IoT's routing protocol (the routing protocol for low-power and lossy networks: RPL) and presents intrusion detection solutions (IDS) to counter RPL attacks.

scholarly journals History-based consistency algorithm for the trickle-timer with low-power and lossy networks

2021 ◽  
Vol 11 (3) ◽  
pp. 2569
Author(s):  
Firas A. Albalas ◽  
Haneen Taamneh ◽  
Wail E. Mardini
Keyword(s):  
Power Consumption ◽  
Low Power ◽  
Routing Protocol ◽  
Convergence Time ◽  
Limited Resources ◽  
The Internet ◽  
Delivery Ratio ◽  
Lossy Networks ◽  
Main Components ◽  
The Internet Of Things

Recently, the internet of things (IoT) has become an important concept which has changed the vision of the Internet with the appearance of IPv6 over low power and lossy networks (6LoWPAN). However, these 6LoWPANs have many drawbacks because of the use of many devices with limited resources; therefore, suitable protocols such as the Routing Protocol for low power and lossy networks (RPL) were developed, and one of RPL's main components is the trickle timer algorithm, used to control and maintain the routing traffic frequency caused by a set of control messages. However, the trickle timer suffered from the short-listen problem which was handled by adding the listen-only period mechanism. This addition increased the delay in propagating transmissions and resolving the inconsistency in the network. However, to solve this problem we proposed the history based consistency algorithm (HBC), which eliminates the listen-only period based on the consistency period of the network. The proposed algorithm showed very good results. We measured the performance of HBC trickle in terms of convergence time; which was mainly affected, the power consumption and the packet delivery ratio (PDR). We made a comparison between the original trickle timer, the E-Trickle, the optimized trickle and our HBC trickle algorithm. The PDR and the power consumption showed in some cases better results under the HBC trickle compared to other trickle timers and in other cases the results were very close to the original trickle indicating the efficiency of the proposed trickle in choosing optimal routes when sending messages.

scholarly journals CoAR: Congestion-Aware Routing Protocol for Low Power and Lossy Networks for IoT Applications

Sensors ◽  
2018 ◽  
Vol 18 (11) ◽  
pp. 3838 ◽  
Author(s):  
Khadak Bhandari ◽  
A. Hosen ◽  
Gi Cho
Keyword(s):  
Low Power ◽  
Monitoring System ◽  
Routing Protocol ◽  
Selection Process ◽  
Lossy Networks ◽  
Detection Mechanism ◽  
Iot Applications ◽  
Wide Range ◽  
Parent Node ◽  
Congestion Aware

The IPv6 routing protocol for low power and lossy networks (RPL) was designed to satisfy the requirements of a wide range of Internet of Things (IoT) applications, including industrial and environmental monitoring. In most scenarios, different from an ordinary environment, the industrial monitoring system under emergency scenarios needs to not only periodically collect the information from the sensing region, but also respond rapidly to some unusual situations. In the monitoring system, particularly when an event occurs in the sensing region, a surge of data generated by the sensors may lead to congestion at parent node as data packets converge towards the root. Congestion problem degrades the network performance that has an impact on quality of service. To resolve this problem, we propose a congestion-aware routing protocol (CoAR) which utilizes the selection of an alternative parent to alleviate the congestion in the network. The proposed mechanism uses a multi-criteria decision-making approach to select the best alternative parent node within the congestion by combining the multiple routing metrics. Moreover, the neighborhood index is used as the tie-breaking metric during the parent selection process when the routing score is equal. In order to determine the congestion, CoAR adopts the adaptive congestion detection mechanism based on the current queue occupancy and observation of present and past traffic trends. The proposed protocol has been tested and evaluated in different scenarios in comparison with ECRM and RPL. The simulation results show that CoAR is capable of dealing successfully with congestion in LLNs while preserving the required characteristics of the IoT applications.

scholarly journals Addressing Flooding Attacks in IPv6-based Low Power and Lossy Networks

2019 ◽  
Author(s):  
Abhishek Verma ◽  
Virender Ranga
Keyword(s):  
Low Power ◽  
Routing Protocol ◽  
Malicious Node ◽  
Lossy Networks ◽  
Control Packet ◽  
Flooding Attack ◽  
Information Object ◽  
Flooding Attacks ◽  
Control Message ◽  
Region 10

<div>Abstarct: In the RPL routing protocol, DODAG Information</div><div>Solicitation (DIS) control messages are sent by nodes to join the network. In turn, the receiver node replies with DODAG Information Object (DIO) control message after resetting its trickle timer. A malicious node can utilize this RPL protocol behavior to perform the DIS flooding attack by sending illegitimate DIS frequently which forces normal nodes to reset their trickle timers and flood the network with DIO messages. In this study, we show that such attacks can severely degrade the performance of Low Power and Lossy Networks (LLNs) because of the increase in control packet overhead and power consumption. To address DIS flooding attacks, we propose a lightweight mitigation scheme that detects and mitigate such attacks in order to improve LLNs</div><div>performance. </div><div><br></div><div>Note:To be published in proceedings of 2019 IEEE Region 10 Conference (TENCON 2019)</div>

scholarly journals Sinkhole Attack Detection and Avoidance Mechanism for RPL in Wireless Sensor Networks

2021 ◽  
Vol 5 (5) ◽  
pp. 94-101
Author(s):  
Ansar Jamil ◽  
Mohammed Qassim Ali ◽  
Muhammed E. Abd Alkhalec
Keyword(s):  
Routing Protocol ◽  
Attack Detection ◽  
Packet Delivery Ratio ◽  
Wireless Sensor ◽  
Delivery Ratio ◽  
Security Mechanism ◽  
Child Node ◽  
Lossy Networks ◽  
Packet Delivery ◽  
Parent Node

The security issue is one of the main problems in Wireless Sensor Network (WSN) and Internet of Things (IoTs). RPL (Routing protocol for low power and lossy networks) is a standard routing protocol for WSN, is not to be missed from being attacks. The performance of RPL is reduced significantly after being attacked. Sinkhole attack is one of the most common attacks to WSN and RPL, threatening the network capability by discarding packets and disrupting routing paths. Therefore, this paper proposes a new Secured-RPL routing protocol to detect and avoid sinkhole attacks in the network, which is called Cross Layers Secured RPL (CLS-RPL). This routing protocol is enhanced of the existing RPL routing protocol. CLS-RPL is a cross-layer routing protocol that uses information from the data link layer in its security mechanism. CLS-RPL uses a new technique and concept in detecting a sinkhole attack that is based on eave-listening (overhearing) that allows a child node to eave-listening its parent transmission. If the child node does not hear any transmission from its parent node after sending several packets, this means its parent node is a sinkhole attacker. Otherwise, if the node hears transmission from its parent node, this means that its parent node is legitimate and continues to send more packets. CLS-RPL implements a simple security mechanism that provides a high packet delivery ratio. The finding shows that CLS-RPL provides 52% improvement in terms of packet delivery ratio when compared to RPL protocol.

scholarly journals Detection and Mitigation of RPL Rank and Version Number Attacks in the Internet of Things: SRPL-RP

Sensors ◽  
2020 ◽  
Vol 20 (21) ◽  
pp. 5997
Author(s):  
Zahrah A. Almusaylim ◽  
NZ Jhanjhi ◽  
Abdulaziz Alhumam
Keyword(s):  
Internet Of Things ◽  
Routing Protocol ◽  
Smart Cities ◽  
Real Life ◽  
Average Energy ◽  
The Internet ◽  
Delivery Ratio ◽  
Lossy Networks ◽  
Average Energy Consumption ◽  
The Internet Of Things

The rapid growth of the Internet of Things (IoT) and the massive propagation of wireless technologies has revealed recent opportunities for development in various domains of real life, such as smart cities and E-Health applications. A slight defense against different forms of attack is offered for the current secure and lightweight Routing Protocol for Low Power and Lossy Networks (RPL) of IoT resource-constrained devices. Data packets are highly likely to be exposed in transmission during data packet routing. The RPL rank and version number attacks, which are two forms of RPL attacks, can have critical consequences for RPL networks. The studies conducted on these attacks have several security defects and performance shortcomings. In this research, we propose a Secure RPL Routing Protocol (SRPL-RP) for rank and version number attacks. This mainly detects, mitigates, and isolates attacks in RPL networks. The detection is based on a comparison of the rank strategy. The mitigation uses threshold and attack status tables, and the isolation adds them to a blacklist table and alerts nodes to skip them. SRPL-RP supports diverse types of network topologies and is comprehensively analyzed with multiple studies, such as Standard RPL with Attacks, Sink-Based Intrusion Detection Systems (SBIDS), and RPL+Shield. The analysis results showed that the SRPL-RP achieved significant improvements with a Packet Delivery Ratio (PDR) of 98.48%, a control message value of 991 packets/s, and an average energy consumption of 1231.75 joules. SRPL-RP provided a better accuracy rate of 98.30% under the attacks.

Sign in / Sign up

Export Citation Format

Share Document