A Secure 6LoWPAN Re-transmission Mechanism for Packet Fragmentation against Replay Attacks (안전한 6LoWPAN 단편화 패킷 재전송 기법에 관한 연구)

HYUNGON KIM (김현곤)

A Secure 6LoWPAN Re-transmission Mechanism for Packet Fragmentation against Replay Attacks

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2009, 14(10), pp.101-110
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science

HYUNGON KIM ¹

¹목포대학교

Accredited

ABSTRACT

The 6LoWPAN(IPv6 Low-power Wireless Personal Area Network) performs IPv6 header compression, TCP/UDP/ICMP header compression, packet fragmentation and re-assemble to transmit IPv6 packet over IEEE 802.15.4 MAC/PHY. However, from the point of view of security, It has the existing security threats issued by IP packet fragmenting and reassembling, and new security threats issued by 6LoWPAN packet fragmenting and reassembling would be introduced additionally. If fragmented packets are retransmitted by replay attacks frequently, sensor nodes will be confronted with the communication disruption. This paper analysis security threats introduced by 6LoWPAN fragmenting and reassembling, and proposes a re-transmission mechanism that could minimize re-transmission to be issued by replay attacks. Re-transmission procedure and fragmented packet structure based on the 6LoWPAN standard(RFC4944) are designed. We estimate also re-transmission delay of the proposed mechanism. The mechanism utilizes timestamp, nonce, and checksum to protect replay attacks. It could minimize reassemble buffer overflow, waste of computing resource, node rebooting etc., by removing packet fragmentation and reassemble unnecessary.

KEYWORDS

6LoWPAN, 단편화(Fragmentation), 재전송(Re-transmission), 보안(Security), 난스(nonce)

Citation status

* References for papers published after 2023 are currently being built.

[report] G G. Montenegro / 2007 / Transmisson of IPv6 Packets over IEEE 802.15.4 Networks / IETF

[web] IETF / IPv6 over Low power WPAN(6LowPAN) / http://www.ietf.org.

[other] IEEE Computer Society / 2003 / IEEE std. 802.15.4-2003

[other] / 2003 / IEEE, "802.15.4 Wireless Medium Access Control (MAC) and Physical Layer(PHY) Specifications for Low-Rate Wireless Personal Area Networks(LRWPANs), ” IEEE Computer Society, September

[other] S. Diniel Park / 2006 / "IPv6 over Low Power WPAN Security Analysis," IETF draft-daniel-6lowpan-security- analysis-02.txt"

[confproc] G. P. Chandranmenon / 1998 / Reconsidering fragmentation and reassembly / 17th ACM SIGACT-SIGOPS Symposium on Principles of Distributed Computing

[confproc] Adam Dunkles / 2004 / Distributed TCP Caching for Wireless Sensor Networks / MedHocNet2004

[confproc] Y. Sankarasubramaniam / 2003 / ESRT: Event-to-Sink Reliable Transport in Wireless Sensor Networks / MobiHoc 2003

[confproc] Chieh-Yih Wan / 2003 / CODA: Congestion Detection and Avoidance in Sensor Networks / SenSys 2003

[web] CERT CC-KR Technical Report / IP Fragment를 이용한 공격기술 / http://cert.cc.or

[report] C. A Kent / 1987 / Fragmentation considered harmful

[web] Jason Anderson / An Analysis of Fragmentation Attacks / www.sans.org

[confproc] H. G. Kim / 2008 / Protection against Packet Fragmentation Attacks at 6LoWPAN Adaptation Layer / ICHIT 2008 : 796~801

[journal] 최낙중 / 2006 / TAS: TCP-Aware Sub-layer over IEEE 802.11-based wireless LANs / 정보과학회논문지 : 정보통신 / 한국정보과학회 33(5) : 355~368

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65