Saturday, October 18, 2008

SAODV


In an ad hoc network, from the point of view of a routing protocol,
there are two kinds of messages: the routing messages and the data
messages. Both have a different nature and different security needs.
Data messages are point-to-point and can be protected with any point-
to-point security system (like IPSec). On the other hand, routing
messages are sent to immediate neighbors, processed, possibly
modified, and resent.

Another consequence of the nature of the transmission of routing
messages is that, in many cases, there will be some parts of those
messages that will change during their propagation. This is very
common in Distance-Vector routing protocols, where the routing
messages usually contain a hop count of the route they are requesting
or providing. Therefore, in a routing message one could distinguish
between two types of information: mutable an non-mutable. It is
desired that the mutable information in a routing message is secured
in such a way that no trust in intermediate nodes is needed.
Otherwise, securing the mutable information will be much more
expensive in computation, plus the overall security of the system
will greatly decrease.

Moreover, as a result of the processing of the routing message, a
node might modify its routing table. This creates the need for the
intermediate nodes to be able to authenticate the information
contained in the routing messages (a need that does not exist in
point-to-point communications).

SAODV is an extension of the AODV routing protocol that protects
the route discovery mechanism providing security features like
integrity and authentication. It uses digital signatures to
authenticate the non-mutable fields of the messages, and hash chains
to secure the hop count information (the only mutable information in
the messages).

SAODV can use the Simple Ad hoc Key Management (SAKM) as a key
management system. (Related link)

2 comments:

Anonymous said...

Can anyone pls tell me how to integrate SAODV protocol in ns2 and tcl file to call the protocol

Anonymous said...

plz send tcl code for saodv protocol
danny7690@gmail.com