Introducing Network Coding to RPL: The Chained Secure Mode (CSM)

TL;DR

This paper introduces the Chained Secure Mode (CSM), a novel security approach for RPL in low power networks, using network coding to improve resilience against replay attacks and enhance security performance.

Contribution

The paper proposes CSM, a new RPL security mode based on intraflow network coding, addressing vulnerabilities of existing modes and demonstrating improved security and performance.

Findings

CSM outperforms UM and PSM in security and performance.

CSM effectively mitigates replay attacks in RPL.

Loses control messages require a recovery mechanism.

Abstract

The current standard of Routing Protocol for Low Power and Lossy Networks (RPL) incorporates three modes of security: the Unsecured Mode (UM), Preinstalled Secure Mode (PSM), and the Authenticated Secure Mode (ASM). While the PSM and ASM are intended to protect against external routing attacks and some replay attacks (through an optional replay protection mechanism), recent research showed that RPL in PSM is still vulnerable to many routing attacks, both internal and external. In this paper, we propose a novel secure mode for RPL, the Chained Secure Mode (CSM), based on the concept of intraflow Network Coding. The main goal of CSM is to enhance RPL resilience against replay attacks, with the ability to mitigate some of them. The security and performance of a proof-of-concept prototype of CSM were evaluated and compared against RPL in UM and PSM (with and without the optional replay protection) in the presence of Neighbor attack as an example. It showed that CSM has better performance and more enhanced security compared to both the UM and PSM with the replay protection. On the other hand, it showed a need for a proper recovery mechanism for the case of losing a control message.