Distributed cross layer approach for detecting multilayer attacks in wireless multi-hop networks

To deter internal attacks, Intrusion Detection Systems are the most favorable solutions for detecting intrusions and raising alerts for desired action since using encryption software for secure communication is not enough. A number of intrusion detection systems have been proposed for ad-hoc networks. Such intrusion detection systems cannot perform well for wireless mesh networks due to its multihop decentralized architecture. The selection of optimal and secure routing path and detection of multilayer security attacks cannot be achieved using traditional single layer IDS. Most of the MAC layer attacks occur due to non compliance of protocols by the nodes. Such a malicious behavior cannot be detected using conventional IDS. In this paper, a Cross Layer based Intrusion detection system has been proposed which takes advantage of the information available across different layers of protocol by activating multiple layer monitoring and detection. The proposed Cross layer based IDS is novel in its architecture and is able to detect multi layer attacks of compound nature. It can also detect low intensity attacks and attack switching behaviors which have been the major shortcoming of most of the existing IDS for Wireless Networks.