A Trust-Based Approach to Mitigate Rerouting Attacks
One of the ways a malicious router can launch a Denial of Service (DoS) attack is by rerouting IP-packets of other destinations to the victim node. In this paper, based on the observed traffic anomalies, the authors propose using a Markov chain model to calculate trustworthiness of routers in order to isolate the malicious ones. Furthermore, their approach reduces the false positives by including context information, such as traffic congestion and packet corruption. By means of simulation, they validate their proposed approach in both connection-oriented (i.e., TCP) and connection-less (i.e., UDP) environments.