Formal reconstruction of attack scenarios in mobile ad hoc and sensor networks

Slim Rekhis, Noureddine Boudriga
2011 EURASIP Journal on Wireless Communications and Networking  
Several techniques of theoretical digital investigation are presented in the literature but most of them are unsuitable to cope with attacks in wireless networks, especially in Mobile Ad hoc and Sensor Networks (MASNets). In this article, we propose a formal approach for digital investigation of security attacks in wireless networks. We provide a model for describing attack scenarios in a wireless environment, and system and network evidence generated consequently. The use of formal approaches
more » ... s motivated by the need to avoid ad hoc generation of results that impedes the accuracy of analysis and integrity of investigation. We develop an inference system that integrates the two types of evidence, handles incompleteness and duplication of information in them, and allows possible and provable actions and attack scenarios to be generated. To illustrate the proposal, we consider a case study dealing with the investigation of a remote buffer overflow attack.
doi:10.1186/1687-1499-2011-39 fatcat:r3bfob7ejndpzmqf725pri5x6q