ARSA

An attack-resilient security architecture for multihop wireless mesh networks

Yanchao Zhang, Yuguang Fang

Research output: Contribution to journalArticle

107 Citations (Scopus)

Abstract

Multihop wireless mesh networks (WMNs) are finding ever-growing acceptance as a viable and effective solution to ubiquitous broadband Internet access. This paper addresses the security of WMNs, which is a key impediment to wide-scale deployment of WMNs, but thus far receives little attention. We first thoroughly identify the unique security requirements of WMNs for the first time in the literature. We then propose ARSA, an attack-resilient security architecture for WMNs. In contrast to a conventional cellular-like solution, ARSA eliminates the need for establishing bilateral roaming agreements and having real-time interactions between potentially numerous WMN operators. With ARSA in place, each user is no longer bound to any specific network operator, as he or she ought to do in current cellular networks. Instead, he or she acquires a universal pass from a third-party broker whereby to realize seamless roaming across WMN domains administrated by different operators. ARSA supports efficient mutual authentication and key agreement both between a user and a serving WMN domain and between users served by the same WMN domain. In addition, ARSA is designed to be resilient to a wide range of attacks. We also discuss other important issues such as incontestable billing.

Original languageEnglish (US)
Article number1705622
Pages (from-to)1916-1928
Number of pages13
JournalIEEE Journal on Selected Areas in Communications
Volume24
Issue number10
DOIs
StatePublished - Oct 2006
Externally publishedYes

Fingerprint

Wireless mesh networks (WMN)
Authentication
Internet

Keywords

  • Authentication
  • Denial-of-service (DoS)
  • Key agreement
  • Roaming
  • Security
  • Wireless mesh networks (WMNs)

ASJC Scopus subject areas

  • Electrical and Electronic Engineering
  • Computer Networks and Communications

Cite this

ARSA : An attack-resilient security architecture for multihop wireless mesh networks. / Zhang, Yanchao; Fang, Yuguang.

In: IEEE Journal on Selected Areas in Communications, Vol. 24, No. 10, 1705622, 10.2006, p. 1916-1928.

Research output: Contribution to journalArticle

@article{bd18ec884b804b9c853b05845616ca47,
title = "ARSA: An attack-resilient security architecture for multihop wireless mesh networks",
abstract = "Multihop wireless mesh networks (WMNs) are finding ever-growing acceptance as a viable and effective solution to ubiquitous broadband Internet access. This paper addresses the security of WMNs, which is a key impediment to wide-scale deployment of WMNs, but thus far receives little attention. We first thoroughly identify the unique security requirements of WMNs for the first time in the literature. We then propose ARSA, an attack-resilient security architecture for WMNs. In contrast to a conventional cellular-like solution, ARSA eliminates the need for establishing bilateral roaming agreements and having real-time interactions between potentially numerous WMN operators. With ARSA in place, each user is no longer bound to any specific network operator, as he or she ought to do in current cellular networks. Instead, he or she acquires a universal pass from a third-party broker whereby to realize seamless roaming across WMN domains administrated by different operators. ARSA supports efficient mutual authentication and key agreement both between a user and a serving WMN domain and between users served by the same WMN domain. In addition, ARSA is designed to be resilient to a wide range of attacks. We also discuss other important issues such as incontestable billing.",
keywords = "Authentication, Denial-of-service (DoS), Key agreement, Roaming, Security, Wireless mesh networks (WMNs)",
author = "Yanchao Zhang and Yuguang Fang",
year = "2006",
month = "10",
doi = "10.1109/JSAC.2006.877223",
language = "English (US)",
volume = "24",
pages = "1916--1928",
journal = "IEEE Journal on Selected Areas in Communications",
issn = "0733-8716",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
number = "10",

}

TY - JOUR

T1 - ARSA

T2 - An attack-resilient security architecture for multihop wireless mesh networks

AU - Zhang, Yanchao

AU - Fang, Yuguang

PY - 2006/10

Y1 - 2006/10

N2 - Multihop wireless mesh networks (WMNs) are finding ever-growing acceptance as a viable and effective solution to ubiquitous broadband Internet access. This paper addresses the security of WMNs, which is a key impediment to wide-scale deployment of WMNs, but thus far receives little attention. We first thoroughly identify the unique security requirements of WMNs for the first time in the literature. We then propose ARSA, an attack-resilient security architecture for WMNs. In contrast to a conventional cellular-like solution, ARSA eliminates the need for establishing bilateral roaming agreements and having real-time interactions between potentially numerous WMN operators. With ARSA in place, each user is no longer bound to any specific network operator, as he or she ought to do in current cellular networks. Instead, he or she acquires a universal pass from a third-party broker whereby to realize seamless roaming across WMN domains administrated by different operators. ARSA supports efficient mutual authentication and key agreement both between a user and a serving WMN domain and between users served by the same WMN domain. In addition, ARSA is designed to be resilient to a wide range of attacks. We also discuss other important issues such as incontestable billing.

AB - Multihop wireless mesh networks (WMNs) are finding ever-growing acceptance as a viable and effective solution to ubiquitous broadband Internet access. This paper addresses the security of WMNs, which is a key impediment to wide-scale deployment of WMNs, but thus far receives little attention. We first thoroughly identify the unique security requirements of WMNs for the first time in the literature. We then propose ARSA, an attack-resilient security architecture for WMNs. In contrast to a conventional cellular-like solution, ARSA eliminates the need for establishing bilateral roaming agreements and having real-time interactions between potentially numerous WMN operators. With ARSA in place, each user is no longer bound to any specific network operator, as he or she ought to do in current cellular networks. Instead, he or she acquires a universal pass from a third-party broker whereby to realize seamless roaming across WMN domains administrated by different operators. ARSA supports efficient mutual authentication and key agreement both between a user and a serving WMN domain and between users served by the same WMN domain. In addition, ARSA is designed to be resilient to a wide range of attacks. We also discuss other important issues such as incontestable billing.

KW - Authentication

KW - Denial-of-service (DoS)

KW - Key agreement

KW - Roaming

KW - Security

KW - Wireless mesh networks (WMNs)

UR - http://www.scopus.com/inward/record.url?scp=33749856769&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33749856769&partnerID=8YFLogxK

U2 - 10.1109/JSAC.2006.877223

DO - 10.1109/JSAC.2006.877223

M3 - Article

VL - 24

SP - 1916

EP - 1928

JO - IEEE Journal on Selected Areas in Communications

JF - IEEE Journal on Selected Areas in Communications

SN - 0733-8716

IS - 10

M1 - 1705622

ER -