UP Paper 1749 US-M-EDOWN
Packet Scheduling Against Stepping-Stone Attacks
Tong,LangCornell University
Venkitasubramaniam,ParvathinathanCornell University
He,TingCornell University
We consider scheduling packet transmissions in a network so that the efficiency of stepping-stone attacks can be severely restrained with the help of stepping-stone monitors. We allow the attacker to encrypt and pad the packets, perturb the timing of packets, and insert chaff packets, but the timing perturbation is subject to a maximum delay constraint. We show that if we randomize packet transmissions, then the attacker has to insert a large amount of chaff to completely evade detection. In particular, if all transmissions are scheduled according to Poisson processes, then we show that the fraction of attacking packets in the attacker’s traffic decreases exponentially with the length of the intrusion path.
Ting He was born in China in 1980. She received her BS degree in Computer Science and Technology from Beijing University, Beijing in 2003. Since then, she has been in the M.S/Ph.D program in the School of Electrical and Computer Engineering at Cornell University. Her research interests include signal processing in sensor networks, statistical learning, and network security. Parvathinathan was born in India in 1981. He received the B.Tech degree in Electrical Engineering from the Indian Institute of Technology, Madras in 2002. Since then, he has been in the M.S/Ph.D program in the School of Electrical and Computer Engineering at Cornell University. His research interests broadly include Wireless Communications, Sensor Networks and Information Theory. Lang Tong joined Cornell University in 1998 where he is now a Professor. Prior to joining Cornell University, he was on faculty at the West Virginia University and the University of Connecticut. He was also the 2001 Cor Wit Visiting Professor at the Delft University of Technology. He received the B.E. degree from Tsinghua University, Beijing, P.R. China in 1985, and PhD degree in EE from the University of Notre Dame, Notre Dame, Indiana in 1991. He was a Postdoctoral Research Affiliate at the Information Systems Laboratory, Stanford University in 1991. Lang Tong is a Fellow of IEEE. He received the Outstanding Young Author Award from the IEEE Circuits and Systems Society, the 2004 best paper award (with Min Dong) from IEEE Signal Processing Society, and the 2004 Leonard G. Abraham Prize Paper Award from the IEEE Communications Society (with Parvathinathan Venkitasubramaniam and Srihari Adireddy). He also received Young Investigator Award from the Office of Naval Research.