NEST - Network Security and Trust Group at the University of Rhode Island

Our current research focuses on three directions: (1) trust establishment foundations; (2) reputation management; and (3) trust-assisted solutions for securing wireless networks.

Topic 1: Defense Trust Management Vulnerabilities in Distributed Networks

Motivation and Goals: Establishing trust among distributed network entities has been recognized as a powerful tool to secure distributed networks such as mobile ad hoc networks (MANET). Similar to all security schemes, trust establishment methods themselves can be vulnerable to attacks. This motivates us to investigate the vulnerabilities in trust establishment methods and defense mechanisms.

Approaches: In this study, we have identified five attacks against trust establishment methods and developed defense mechanisms. Effectiveness of the attacks and the defense is demonstrated in the scenario of securing routing protocols and detecting malicious nodes in MANET.

Observations and Outcomes: the advantage of integrating trust in distributed networks is demonstrated through analysis and simulations. Three attacks, including bad-mouthing, on-off attack, and confliction-behavior attack, are investigated in depth. The main results are summarized as follows. For the bad mouthing attack, the most effective defense is to incorporate recommendation trust in the malicious node detection algorithm. To defeat the on-off attack, the adaptive forgetting scheme is better than using fixed forgetting factors. In the conflicting behavior attack, when the attackers do not provide recommendations to anyone, this attack is most effective. Under the conflicting-behavior attack, using recommendation trust in malicious node detection can reduce the detection rate. This research yields a systematic understanding on vulnerability of trust evaluation mechanisms for distributed networks.

Yan Sun, Zhu Han, and K. J. Ray Liu, "Defense Trust Management Vulnerabilities in Distributed Networks", IEEE Communications Magazine, Feature Topic on Security in Mobile Ad Hoc and Sensor Networks, vol. 46, no 2, pp112-119, Feb 2008.

Topic 2: Securing Online Rating Systems through Signal Processing and Trust Management

Motivation and Goals: The Internet, the revolutionary mass communication media, has enabled individuals to make their personal opinions accessible to the global community at almost no cost. One important type of information sharing is through online opinion forums and rating systems, such as Epinions and Amazon product rating. In such systems, users submit their opinions regarding products, services or other users. Then, the submitted opinions are analyzed, aggregated, and made publicly available. While feedback-based rating systems are having increasing influence on today¡¯s consumers, ensuring reliability and security of such systems is a challenging task, especially when the number of regular ratings is relatively small and unfair ratings can contribute to a significant portion of the overall ratings. The goal of this research is to develop new algorithms and a framework to secure rating aggregation.

Approaches: In this project, we designed a comprehensive system for integrating trust management and signal processing techniques into rating aggregation process.

For detecting unfair ratings, we developed a model error based detector, two arrival rate change detectors, a histogram change detector, and adopted a mean change detector. These statistical detectors cover different types of attacks.

A method for jointly utilizing these detectors is developed, based on the classification of human users' attacking behavior and receiver operating characteristic (ROC) analysis. The proposed solution can detect dishonest raters who collaboratively manipulate rating systems and carefully control their risk of being detected. This type of unfair raters is difficult to catch by the existing approaches. The proposed solution can also handle a variety of attacks.

Based on the detection results, we evaluate the trustworthiness of users and utilize this trust information in the rating aggregation algorithm.
For performance evaluation, we designed and launched a rating challenge to collect real user attack data.

Observations and Outcomes: The proposed system is evaluated against attacks created by real human users. Compared with existing majority-rule based approaches, the proposed approach demonstrates significant performance advantage. The proposed scheme can reduce the bias introduce by unfair ratings by a factor of 3 or more. In other words, when the attacks (collected from real human users) introduce bias X in the final rating results in the existing schemes, these attacks can introduce at most X/3 bias in the proposed scheme. The results generated by this research are reported in the following paper.

Yafei Yang, Yan Sun, Steven Kay, and Qing Yang, "Defending Online Reputation Systems against Collaborative Unfair Raters through Signal Modeling and Trust", to appear, in Proc. the 24th ACM Symposium on Applied Computing (ACM SAC'09), Honolulu, Hawaii, March 8 - 12, 2009.
Yafei Yang, Yan Sun, Steven Kay, and Qing Yang, "Securing Rating Aggregation Systems using Statistical Detectors and Trust", submitted to IEEE Transactions on Information Forensics and Security, submitted in Oct. 2007.

This research also yields a patent application.

Yan Sun, Yafei Yang, Qing (Ken) Yang, Steven Kay, "Methods for defense against collaborative, profit-driven manipulations in online rating systems", pending, filed May 9, 2008.

This research provides approaches to handle smart unfair ratings that could not be handled well by the existing methods. For the first time, the evaluation of rating system can be done through real user attack experiments, with ground truth that perfectly tells which ratings are from normal users and which are from attackers. We collected the real user attack data through a cyber competition, designed the algorithms and conducted the experiments. Prof. Steven Kay helped the development of arrival rate change detector and Prof. Qing Yang provided assistance on managing the cyber competition.

Topic 3: Securing Online Reputation Systems: New Attack and Defense

Motivation and Goals: Word-of-mouth, one of the most ancient mechanisms in the history of human society, is gaining new significance in the Internet. The online reputation systems, also known as the on-line feedback mechanisms, are creating large scale, virtual word-of-mouth networks in which individuals share opinions and experiences on a wide range of topics, including products, companies, digital content and even other people. Reputation systems are having increasing influence on purchasing decision of consumers and online digital content distribution. Meanwhile, the manipulation of such systems is rapidly growing. Firms post biased ratings and reviews to praise their own products or bad-mouth the products of their competitors. Political campaigns promote positive video clips and hide negative video clips by inserting unfair ratings at YouTube.com. In the current literature, the research on attacks against reputation systems is still immature. The existing threat models are straightforward. In this research, we investigate sophisticated attacks against reputation systems.

Approaches: In this study, we report the discovery of a new attack, named RepTrap, against feedback-based reputation systems, such as those used in P2P file-sharing systems and E-commerce websites (e.g. Amazon.com). We conduct an in-depth investigation on this new attack, including

discovering the novel RepTrap attack;
developing optimal attack strategy;
studying the influence of RepTrap in several case studies;
building a simulation environment based on real user log data in a P2P system;
comparing the strength of RepTrap and other attacks against feedback-based reputation systems.

Observations and Outcomes: We discover that the RepTrap is a strong and destructive attack that can manipulate the reputation scores of users, objects, and even undermine the entire reputation system. Compared with other known attacks that achieve the similar goals, the RepTrap requires less effort from the attackers and causes multi-dimensional damage to the reputation systems. For example, when the attacks are launched on day 5 after the most popular file is published in a P2P file sharing system with 1000 honest users and 50 dishonest users, the simple attack cannot achieve the attack goal (i.e. making the most popular file be marked as low quality), a sophisticated known attack has 10% probability to achieve the attack goal, and the RepTrap can achieve the attack goal with 60% probability. Currently, we are developing defense mechanisms against the RepTrap attack and other advanced collaborative attacks. The research activities and results are reported in the following papers.

Yafei Yang, Qinyuan Feng, Yan Sun and Yafei Dai, "Reputation Trap: An Powerful Attack on Reputation System of File Sharing P2P Environment", in Proc. the 4th International Conference on Security and Privacy in Communication Networks (SecureComm'08, acceptance ratio 20%), Istanbul, Turkey, Sept. 2008.
Yuhong Liu, Yafei Yang, and Yan Lindsay Sun, "Detection of Collusion Behaviors in Online Reputation Systems", Proc. of Asilomar Conference on Signals, Systems, and Computers, PACIFIC GROVE, CA, October, 2008.

The discovery of the new RepTrap attack certainly advanced the arms race between attack and defense. In this project, we collaborated with the networking group at PKU.

Topic 4: Modeling Misbehaviors in Online Rating Systems

Motivation and Goals: Dealing with unfair ratings in online feedback-based rating systems has been recognized as an important problem. Many unfair rating detection approaches have been developed. Currently, those approaches are evaluated against simple attack behavior models, in which assumptions are made to greatly simplify the behavior of dishonest raters. However, most of the assumptions have not been validated by real user data and the simplification has not been well justified. More important, these simple models cannot reflect the smart attacks from real human users who can always adjust the attack strategies based on their observation of original rating data and gain knowledge about the rating system. The lack of unfair rating data from real human users and realistic attack behavior models has become an obstacle toward developing reliable rating systems. More realistic and complicated models of dishonest raters need to be developed.

Approaches: To solve this problem, we first design and launch a rating challenge to collect attack data from real human users. Moreover, we use our research results (see topic 2) in the rating challenge. We are able to collect a broad range of attacks including both straightforward attacks and smart/complicated attacks. Then, we analyze the attack behavior of real human users and evaluate the performance of both the complex and simple defense schemes against real user data. Many important results are obtained. Finally, we build novel attack models as well as a comprehensive attack generator.

Observations and Outcomes: Based on the analysis of real attack data, we have discovered important features in unfair ratings. For example, the bias and variance of unfair ratings greatly affect the strength of attacks; there exists an unfair rating arrival rate that maximizes the attack power; correlation between unfair ratings and fair ratings is not presented in current attacks but can improve the attack power, etc. The attack models and attack generator developed in this research can be directly used by the research community and industry to test current rating aggregation systems, as well as to assist the design of future rating systems. The results generated by this research are reported in the following paper.

Yafei Yang, Qinyuan Feng, Yan Sun and Yafei Dai, "Dishonest Behaviors in Online Rating Systems: Cyber Competition, Attack Models and Attack Generator", accepted, Journal of Computer Science Technology, Special Issues on Trust and Reputation Management in Future Computing Systems and Applications, accepted, notified in Dec. 2008.
Qinyuan Feng, Yu Wu, Yan Lindsay Sun, Jing Jiang, Yafei Dai, "User Behavior Modeling in Peer-to-Peer File Sharing Networks: Dissecting Download and Removal Actions", to appear, the 34th International Conference on Acoustics, Speech, and Signal Processing (ICASSP'09), 2009.
Qinyuan Feng, Yafei Yang, Yan Sun, Yafei Dai, "Modeling Attack Behaviors in Rating Systems", invited paper, to appear in Proc. 2st International Workshop on Trust and Reputation Management in Massively Distributed Computing Systems (IEEE TRAM'08), Beijing, China, July 2008.

In this project, we collaborate with the networking group at PKU.

Topic 5: Secure Collaborative Spectrum Sensing in Cognitive Radio Networks

Motivation and Goals: Collaborative sensing in cognitive radio networks can significantly improve the probability of detecting the transmission of primary users. In current collaborative sensing schemes, all collaborative secondary users are assumed to be honest. However, it is well known that wireless devices can be compromised and under the control of malicious parities. The malicious secondary user can send false information and mislead the spectrum sensing results to cause collision or inefficient spectrum usage. In this study, we investigate how to improve the security of collaborative sensing.

Approaches: We develop a malicious user detection algorithm that calculates the suspicious level of secondary users based on their past reports. Then, we calculate trust values as well as consistency values that are used to eliminate the malicious users' influence on the primary user detection results.

Observations and Outcomes: We just started this research and only preliminary results are obtained. The preliminary results are summarized in the following manuscript.

Wenkai Wang, Husheng Li, Yan Sun and Zhu Han, "Attack-Proof Collaborative Spectrum Sensing in Cognitive Radio Networks", 43rd Annual Conference on Information Sciences and Systems (CISS'09), accepted.

In this project, we collaborate with Dr. Husheng Li at the University of Tennessee and Dr. Zhu Han at the University of Houston.

Topic 6: Securing Time-synchronization Protocols in Sensor Networks

Motivation and Goals: Time synchronization is critical to sensor networks. Precise time is required by many applications and protocols, such as measuring time-of-flight for positioning, forming TDMA radio scheduling, coordinating sensors¡¯ sleep wakeup schedules, preventing replay attacks, and collaborative signal processing. If malicious entities can manipulate the time synchronization protocol, catastrophic failure of many applications and protocols in sensor networks would occur. Recently, several schemes are proposed to secure time synchronization in sensor networks. These schemes focus either on securing pair wise clock synchronization between two or several nodes, or on external attacks. When there are sophisticated attacks from insiders (i.e., compromised sensors) targeting network-wide time synchronization, the existing defense methods are not sufficient. In this study, we identify various attacks against time synchronization and then develop a detection and self-healing scheme to defeat those attacks.

Approaches:This work contributes to securing time synchronization protocols in sensor networks from two perspectives. First, we identify various attacks that can be launched by compromised sensors. Second, we design a trust-enhanced detection and self-healing scheme to defeat major attacks against time synchronization protocols. The defense scheme has three phases: (1) abnormality detection performed by individual sensors, (2) trust-based malicious node detection performed by the base station, and (3) self-healing through changing the topology of the synchronization tree.

Observations and Outcomes: Simulations have shown that the proposed scheme can successfully detect several attacks and enable fast recovery from those attacks. For example, when the attackers launch a smart attack that cannot be detected by the existing schemes, the proposed scheme can detect 85% of malicious nodes just after 12 rounds of operation. The results generated by this research are reported in the following paper.

Yafei Yang and Yan Sun, "Securing Time-synchronization Protocols in Sensor Networks: Attack Detection and Self-healing", IEEE Globecom'08, New Orleans, LA, Nov-Dec 2008.

Cooperative Transmission in Wireless Networks

Cooperative transmission is an emerging communication technique that takes advantage of spatial diversity and broadcast natures of wireless channel to improve wireless channel capacity. However, cooperative transmission can be vulnerable to malicious attacks, especially in its current design. In this project, we examine whether the cooperative transmission still has performance advantage when we consider security issues. In particular, we identify various attacks against cooperative transmission, analyze vulnerabilities of current schemes, design a trust-assisted cooperative transmission scheme, and evaluate the proposed scheme through simulations. The proposed scheme strengthens security and maintains the performance advantage. It performs much better than the traditional scheme when there are malicious/selfish relays or severe channel estimation errors. In addition, we investigate the advantage of cooperative transmission in terms of defending jamming attacks. A reduction in link outage probability is obtained and the recovery from attacks is observed.
Reference:

Zhu Han and Yan Sun, "Cooperative Transmission for Underwater Acoustic Communications", to appear, IEEE International Conference on Communications (ICC'08), Beijing China, May 2008.
Zhu Han and Yan Sun, "Self-Learning Cooperative Transmission-Coping with Unreliability due to Mobility, Channel Estimation Errors, and Untrustworthy Nodes", IEEE Globecom'07, Washington DC, Dec. 2007.
Zhu Han and Yan Sun, "Securing Cooperative Transmission in Wireless Communications", in Proc. 1st ACM Workshop on Security for Emerging Ubiquitous Wireless Networks, Philadelphia, PA, August 2007.

Trust Establishment in Distributed System

Trust establishment is recognized as an important approach to defend distributed networks, such as mobile ad hoc networks and sensor networks, against malicious attacks. Trust establishment mechanisms can stimulate collaboration among distributed computing and communication entities, facilitate the detection of untrustworthy entities, and assist decision-making in various protocols. In the current literature, the methods proposed for trust establishment are always evaluated through simulation, but theoretical analysis is extremely rare. In this project, we present a suite of approaches to analyze trust establishment process. These analysis approaches are used to provide in-depth understanding of trust establishment process and quantitative comparison among trust establishment methods. The proposed analysis methods are validated through simulations.
Reference:

Yan Sun, Wei Yu, Zhu Han, and K. J. Ray Liu, "Information Theoretic Framework of Trust Modeling and Evaluation for Ad Hoc Networks", IEEE JSAC special issue on security in wireless ad hoc networks, Vol 24, no.2, February, 2006.
Yan Sun and Yafei Yang, "Trust Establishment in Distributed Networks: Analysis and Modeling", IEEE ICC'07, Glasgow, Scotland, June. 2007.

Energy Efficiency in Wireless Sensor Networks

Energy has been identified as a crucial resource in wireless sensor networks (WSNs). Since it is usually difficult to recharge the sensors deployed in a remote or hostile environment, reducing the energy consumption is the key to prolong the lifetime of the network. In this project, we investigate an energy-saving strategy, called outsourcing, which allows a sensor to outsource tasks to others in order to reduce the overall energy consumption as well as the energy consumption of the sensors with low remaining energy. Based on this strategy, we designed an energy efficient reliable transport protocol that intelligently distributes the task of data recovery. Both analysis and simulations show the significant reduction in energy consumption. In addition, the implementation of the proposed scheme requires minor modification to the existing protocols.
References:

Yafei Yang and Yan Sun, "Energy-efficient Reliable Transmission Protocol with Outsourcing in WSNs", in Proc. IEEE Globecom'06, San Francisco, CA, Dec. 2006.

Key Management for Secure Group Communications

References:

Yan Sun, and K. J. Ray Liu, "Hierarchical Group Access Control for Secure Multicast Communications", IEEE/ACM Transactions on Networking, vol. 15, Issue 6, pp1514-1526, Dec. 2007.
Yan Sun and K. J. Ray Liu, "Analysis and Protection of Dynamic Membership Information for Group Key Distribution Schemes", IEEE Transactions on Information Forensics and Security, vol.2, Issue 2, pp 213-226, June, 2007.
Wei Yu, Yan Sun, and K. J. Ray Liu, "Optimizing Rekeying Cost for Contributory Group Key Agreement Schemes", IEEE Trans. on Dependable and Secure Computing, vol 4. No. 3, pp228-242, July-Sept 2007.