Detection Method for Gray Hole Attack in IPv6 Internet of Things
ZHANG Guang-hua1,2，YANG Yao-hong1，ZHANG Dong-wen1
1（College of Information Science and Engineering,Hebei University of Science and Technology,Shijiazhuang 050000,China）
2（State Key Laboratory of Integrated Services Networks,Xidian University,Xi′an 710071,China）
Abstract：In the environment of Internet of Things,because of the mobility of some nodes to increase the packet loss probability of legitimate nodes,the legitimate nodes were easily misjudged as malicious nodes when the probability threshold of packet loss was adopted to detect gray hole attack.Therefore,on the basis of the RPL protocol,a detection method for gray hole attack in the case of nodemovement was proposed.The Expected Transmission count was used to calculate the dynamic threshold of packet loss probability.The packet loss probability of each routing node was compared with the dynamic threshold to filter out suspicious gray hole nodes and mark them into the quarantine area.When the number of times that a routing node was marked into quarantine area was up to the upper limit,the sink node performed Sequential Probability Ratio Test on the node to make further efforts to determine whether the node was a gray hole node.Finally,gray hole nodes were removed from the network through the global repair mechanism in RPL protocol.Simulation results and analysis show that the proposed method can effectively detect out gray hole nodes,and the false positive probability is lower.
张光华,杨耀红,张冬雯. IPv6物联网中灰洞攻击的检测方法[J]. 小型微型计算机系统, 2018, 39(7): 1504-1511.
ZHANG Guang-hua,YANG Yao-hong,ZHANG Dong-wen. Detection Method for Gray Hole Attack in IPv6 Internet of Things. Journal of Chinese Computer Systems, 2018, 39(7): 1504-1511.