A generalized intrusion detection & prevention mechanism for securing MANETs

Most of the research in securing Mobile ad hoc networks (MANETs) has focused on proposals which detect and prevent a specific kind of attack such as sleep deprivation, black hole, grey hole and rushing attacks. In this paper we broaden our previously develop algorithm AIDP and propose a generalized intrusion detection and prevention mechanism. We use a combination of anomalybased and knowledge-based intrusion detection. This approach not only secures the MANET from a wide variety of routing attacks but also has the capability to detect new unforeseen attacks. Simulation results of a case study shows that our proposed mechanism can successfully detect attacks, including multiple simultaneous different attacks, and identify and isolate the intruders causing a variety of attacks, with an affordable network overhead. Keywords— ad hoc network security; intrusion detection & prevention; secure routing