Divya Sai Keerthi T and Pallapa Venkataram, Indian Institute of Science - Bangalore, India

The wormhole attack is a severe attack on an application in a Mobile Ad hoc Network (MANET). This attack causes the applications to choose longer routes and disturbs the communications. A wormhole attacker can cause havoc on a MANET even without compromising the host of the application. For a wormhole attacker, email dumping is a simple attack that can lead to disastrous effects. In this paper we demonstrate the working of wormhole attack confirmation system in case of email dumping attack. The proposed method uses the honeypot to keep the attackers busy by interacting with them, and simultaneously identifies the attack using attack tree. It further reduces the false alarms, using the history of past attacks, stored in the Attack History Database. The system was tested in various sizes of MANETs, and the results prove that, the system efficiently identifies the email dumping attack with reduce false alarms.

Email Dumping Attack, Wormhole attack, Honeypot, Attack Tree, Attack History, MANET