Unlock instant, AI-driven research and patent intelligence for your innovation.

Active intrusion detection system and method for wireless mesh network

An intrusion detection system and active detection technology, applied in network topology, transmission system, wireless communication, etc., can solve problems such as node detection failure, bandwidth consumption, and difficulty in establishing a detection system

Active Publication Date: 2018-11-16
XIDIAN UNIV
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Specifically for the security problems faced by wireless Mesh networks, one solution is to start from the network design stage. When designing the security module of wireless Mesh networks, combine the research results of traditional wireless network security with the specific security of wireless Mesh networks. Considering the needs and network characteristics together, but this method is not followed in the design of the wireless mesh network, which makes it very difficult to add an effective security module to the wireless mesh network model that has been formed at present, and it will cost a lot
Another solution is to deploy detection systems or detection nodes in the network center to monitor and report the security status of the network in real time. Nodes in the center of the network for a long time, so the intrusion detection system deployed on a single fixed node cannot fully detect all nodes in the network, so the detection efficiency and detection accuracy are very low, and it is difficult to establish a centralized detection system to adapt The ever-changing network topology of wireless mesh network
Another solution is to deploy an intrusion detection system on all nodes in the network to form a distributed intrusion detection system, but since an intrusion detection system needs to be deployed on each node, there is no doubt that each node Both increase the additional operating burden, and the sharing of intrusion detection information between nodes also brings a lot of bandwidth consumption to the entire network
[0006] At present, as far as the existing intrusion detection technology is concerned, the applicant has not retrieved an intrusion detection system that can realize mobility detection within a limited range, and at the same time, there is no intrusion detection that uses active detection to detect the security status of the target node system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Active intrusion detection system and method for wireless mesh network
  • Active intrusion detection system and method for wireless mesh network
  • Active intrusion detection system and method for wireless mesh network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0050] The present invention is an active intrusion detection system for a wireless Mesh network. The system includes a data acquisition module, an intermediate module and a system response module. The data acquisition module acquires detection data from the wireless Mesh network. The wireless Mesh network is referred to as for the network. The usual intrusion detection system is processed by the intermediate module, and then the system response module makes the result response, see the appendix figure 1 , the intermediate module of the present invention is an active detection module, and the active detection module actively sends detection information to target nodes in the network to form active detection. The entire intrusion detection system of the present invention only needs to be deployed on a mobile node in the wireless Mesh network to complete the active detection of the entire wireless Mesh network intrusion. This node is called the host node of the system, because t...

Embodiment 2

[0056] The composition and work of the active intrusion detection system of the wireless Mesh network are the same as in embodiment 1, wherein each detection rule in the detection rule submodule includes an active detection packet structure and a detection instruction group, for each specific detection process , both need to independently define the active detection packet structure and detection instruction group.

[0057] The independent definition of the active detection packet structure refers to defining the protocol set that needs to be used in the active detection process and the specific protocol to be used in the protocol set in the form of an XML file. The packet structure of the specific protocol includes pre-filled class fields and random selection Class fields, where the fields given in the form of the default binary or hexadecimal data of the field are called pre-populated class fields, and the fields given in the form of functions are called random selection clas...

Embodiment 3

[0061] The composition and work of the active intrusion detection system of the wireless Mesh network are the same as those in Embodiment 1-2. In this example, a specific protocol set dot11s is provided to illustrate the self-definition and pairing of the active detection packet structure in the detection rules of the present invention. Actively detect the masquerading process of data packets. The protocol set includes two specific protocols and their packet structures, namely dot11sdata and dot11spreq. The specific content is as follows:

[0062]

[0063]

[0064]

[0065] Among them, the fields filled in with binary or hexadecimal data as the default value are the pre-filled fields described in the claims, and the fields filled in in the form of functions are the random selection fields described in the claims; Randomly select the class field to camouflage the active detection data packet sent by the detection system to achieve the purpose of hiding the detection nod...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an active intrusion detection system and method for a wireless Mesh network, which mainly solves the problems of limited resources and difficult centralization faced by the intrusion detection system in the wireless Mesh network. The system only needs to be deployed on a mobile node in the network. The system includes data collection, active detection and response modules. The detection packet sending sub-module of the active detection module actively sends detection information to the target node. The system has active detection and mobility . The detection method mainly includes: scanning neighbor nodes; selecting the target node; selecting the detection process; data packet collection; status analysis and judgment; status result response; loop detection; The invention provides a practical means for the intrusion detection of the wireless Mesh network, alleviates the limitation of the distributed and single node-based detection system, obviously improves the detection flexibility and pertinence, and has high detection efficiency.

Description

technical field [0001] The invention belongs to the technical field of wireless network data security, and mainly relates to mobile intrusion detection, in particular to an active intrusion detection system and method for a wireless Mesh network, which can be applied to security management and intrusion detection of a wireless Mesh network. Background technique [0002] As a new wireless access technology, wireless mesh network can effectively overcome the problems of small coverage, high deployment cost and poor flexibility of existing wireless network technologies. Wireless Mesh networks are generated and developed on the basis of mobile Ad hoc networks and wireless local area networks. Therefore, wireless Mesh networks not only have some attributes of the above two networks, but also have many advantages of their own, such as broadband capacity Large size, high transmission rate, wide coverage, flexible networking, and good mobility. Due to the various advantages of Mesh...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04W12/12H04W84/18H04L29/06H04W12/121
CPCH04L63/1416H04W12/12H04W84/18
Inventor 刘亚东杨超马建峰姜奇卢帆朱彤彤
Owner XIDIAN UNIV