Random Routing Algorithm for Enhancing the Cybersecurity of LEO Satellite Networks
Abstract
:1. Introduction
- (1)
- We propose a k-RAND algorithm that selects from one of the four algorithm—k-DG, k-DS, k-SP, and k-LO—to maximize the average cost of the attacks while maintaining the functionality of the LEO satellite communication network.
- (2)
- To optimize the performance of our proposed algorithm, we formulate a Bayesian optimization problem that will maximize the average cost of the routing algorithm for DDoS attacks.
- (3)
- We show that the average cost of the DDoS attacks on the satellite network is enhanced with the optimized k-RAND algorithm.
2. Cyberattacks in Satellite Networks
- Denial-of-service (DoS) and DDoS attacks: The attacker will overwhelm or flood the information system in such a way that leads to a denial of service to the intended legitimate users. The attack is typically carried by a single computer or device. The DDoS attack is a type of DoS attack in which the attacker uses several distributed devices to flood the data traffic. The distributed devices are usually compromised bots [43].
- Man-in-the-middle (MitM) attack: The attacker places itself in the communication link between two parties in order to intercept, eavesdrop, or corrupt the data being exchanged between the involved parties. Such an attack will enable the attacker to steal login passwords and personal information and spy on the victim [44].
- Phishing and spear-phishing attacks: Phishing attacks are based on using social engineering and technical tricks to manipulate the users. The attackers disguise as a trusted party to send emails and messages that will lead to the installation of some malicious software or the revealing of personal and sensitive information. A spear-phishing attack is a targeted attack by gathering some typical information about the target users or organization to increase the probability of success of a phishing attack. As this attack is very specific and targeted, it is difficult to identify and defend against [45].
- Drive-by attack: Such attacks are a common way to install and download malicious software without any explicit permission from the user. This usually happens while visiting a compromised website that will automatically download and install to infect the device, steal information, or corrupt stored data. This is also known as a drive-by download as this does not require any action on the part of victim. A drive-by download attack can take advantage of the security vulnerability of an app, operating system, or web browser [46].
- Password attack: Passwords are required to obtain access to an information system, storage devices, and emails. Password attacks use special techniques and software to guess the passwords of users to gain access to their system. Such access to a user’s password can be obtained by smart guessing by combining date of birth, place of birth, pet’s name etc., using social engineering and tricks and gaining access to a password database [47].
- SQL injection attack: Structured Query Language (SQL) attacks are mostly common with database-driven websites. The attacker inserts SQL commands that can lead to access, modify, and delete databases or completely shut them down [48].
- Cross-site scripting (XSS) attack: XSS attacks inject malicious code into a trusted website. The users visiting the website will be vulnerable to give away personal information or download software onto their computers [49].
- Eavesdropping attack: Eavesdropping attacks occur by intercepting, modifying, or deleting the data that are being exchanged between two parties. It takes advantage of an unsecured communication network to snoop on the data transfer in transit [50].
- Malware attack: Such attacks uses malicious or unwanted software designed to harm the information system. It can lead to stealing, deleting, or encrypting the data, gaining access and control of the device, locking the device, and injecting some spy software. Some examples include virus, worm, ransomware, trojan horse, bots, spyware, adware, etc. [51].
3. Random Routing Algorithm
- Ground-to-ground disjoint paths (k-DG): The algorithm considers k-shortest paths with node disjoint paths, i.e., without any shared uplinks, downlinks, or inter-satellite links. The node disjoint paths only share the source and destination points [54].
- Satellite-to-satellite disjoint paths (k-DS): This algorithm finds the k shortest paths with the node disjointness forced only on the inter-satellite links while allowing overlaps in the paths of the uplinks and the downlinks.
- Limited-overlap shortest paths (k-LO): The algorithm finds the k shortest path between the source and destination ensuring that these paths are sufficiently dissimilar to each other. It is an implementation of the ESX algorithm, as shown in [55], in that it finds the k shortest paths with a similarity score of less than 50%.
Algorithm 1 k-RAND algorithm |
Generate A randomly between [0, 1] If Use shortest paths (k-SP) Else If Use sround-to-ground disjoint paths (k-DG) Else If Use satellite-to-satellite disjoint paths (k-DS) Else Use limited-overlap shortest paths (k-LO) |
4. Simulation Results and Discussion
5. Conclusions
Author Contributions
Funding
Acknowledgments
Conflicts of Interest
References
- Ye, L.; Yang, Y.; Jing, X.; Ma, J.; Deng, L.; Li, H. Single-Satellite Integrated Navigation Algorithm Based on Broadband LEO Constellation Communication Links. Remote Sens. 2021, 13, 703. [Google Scholar] [CrossRef]
- Kumar, R.; Arnon, S. SNR Optimization for LEO Satellite at Sub-THz Frequencies. IEEE Trans. Antennas Propag. 2022, 70, 4449–4458. [Google Scholar] [CrossRef]
- Lee, J.H.; Seo, H.; Park, J.; Bennis, M.; Ko, Y.C. Learning Emergent Random Access Protocol for LEO Satellite Networks. IEEE Trans. Wirel. Commun. 2023, 22, 257–269. [Google Scholar] [CrossRef]
- Esposito, M.; Palma, L.; Belli, A.; Sabbatini, L.; Pierleoni, P. Recent Advances in Internet of Things Solutions for Early Warning Systems: A Review. Sensors 2022, 22, 2124. [Google Scholar] [CrossRef]
- Chen, Y.; Zhang, M.; Li, X.; Che, T.; Jin, R.; Guo, J.; Yang, W.; An, B.; Nie, X. Satellite-Enabled Internet of Remote Things Network Transmits Field Data from the Most Remote Areas of the Tibetan Plateau. Sensors 2022, 22, 3713. [Google Scholar] [CrossRef]
- Li, H.; Shi, D.; Wang, W.; Liao, D.; Gadekallu, T.R.; Yu, K. Secure routing for LEO satellite network survivability. Comput. Netw. 2022, 211, 109011. [Google Scholar] [CrossRef]
- Kumar, R.; Arnon, S. Enhancing Cybersecurity of Satellites at Sub-THz Bands. In Cyber Security, Cryptology, and Machine Learning; Dolev, S., Katz, J., Meisels, A., Eds.; Springer International Publishing: Cham, Switzerland, 2022; pp. 356–365. [Google Scholar]
- Giuliari, G.; Ciussani, T.; Perrig, A.; Singla, A. ICARUS: Attacking low earth orbit satellite networks. In Proceedings of the 2021 USENIX Annual Technical Conference (USENIX ATC 21), Online, 14–16 July 2021; pp. 317–331. [Google Scholar]
- Lab, K. Collateral Damage: 26% of DDoS Attacks Lead to Data Loss. 2015. Available online: https://www.kaspersky.com/about/press-releases/2015_collateral-damage-26-of-ddos-attacks-lead-to-data-loss (accessed on 23 August 2022).
- Hildebrand, C. Satellite Companies, ISPs Feeling the Heat from Hackers. 2020. Available online: https://www.netscout.com/blog/satellite-companies-isps-feeling-heat-hackers (accessed on 23 August 2022).
- Baron, S. Simple Steps To Calculate The Costs Of DDoS Attack—Part 1. 2020. Available online: https://blog.mazebolt.com/calculate-ddos-attack-costs (accessed on 23 August 2022).
- Al-Hraishawi, H.; Chougrani, H.; Kisseleff, S.; Lagunas, E.; Chatzinotas, S. A Survey on Non-Geostationary Satellite Systems: The Communication Perspective. IEEE Commun. Surv. Tutor. 2022, 1. [Google Scholar] [CrossRef]
- Zhang, H.; Ren, D.; Jiang, F. A Beam Search-Based Channel Allocation Method for Interference Mitigation of NGSO Satellites with Multi-Beam Antennas. Aerospace 2022, 9, 177. [Google Scholar] [CrossRef]
- Jia, M.; Zhang, L.; Wu, J.; Guo, Q.; Gu, X. Joint computing and communication resource allocation for edge computing towards Huge LEO networks. China Commun. 2022, 19, 73–84. [Google Scholar] [CrossRef]
- Kumar, R.; Arnon, S. DNN Beamforming for LEO Satellite Communication at Sub-THz Bands. Electronics 2022, 11, 3937. [Google Scholar] [CrossRef]
- Cao, X.; Li, Y.; Xiong, X.; Wang, J. Dynamic Routings in Satellite Networks: An Overview. Sensors 2022, 22, 4552. [Google Scholar] [CrossRef] [PubMed]
- Huang, Y.; Cao, W.; Liu, X.; Jiang, X.; Yang, J.; Yang, F. An Adaptive Multipath Routing for LEO Satellite Network. In Proceedings of the 2021 IEEE 4th Advanced Information Management, Communicates, Electronic and Automation Control Conference (IMCEC), Chongqing, China, 18–20 June 2021; Volume 4, pp. 1536–1541. [Google Scholar] [CrossRef]
- Iglesias-Sanuy, P.; López-Ardao, J.C.; Rodríguez-Pérez, M.; Herrería-Alonso, S.; Suárez-González, A.; Rodríguez-Rubio, R.F. An Efficient Location-Based Forwarding Strategy for Named Data Networking and LEO Satellite Communications. Future Internet 2022, 14, 285. [Google Scholar] [CrossRef]
- Madni, M.A.A.; Iranmanesh, S.; Raad, R. DTN and Non-DTN Routing Protocols for Inter-CubeSat Communications: A comprehensive survey. Electronics 2020, 9, 482. [Google Scholar] [CrossRef] [Green Version]
- Chan, C.C.; Al Homssi, B.; Al-Hourani, A. Performance Evaluation of Random Access Methods for IoT-over-Satellite. Remote Sens. 2022, 14, 4232. [Google Scholar] [CrossRef]
- Wang, C.; Wang, H.; Wang, W. A Two-Hops State-Aware Routing Strategy Based on Deep Reinforcement Learning for LEO Satellite Networks. Electronics 2019, 8, 920. [Google Scholar] [CrossRef] [Green Version]
- Xiao, Y.; Liu, J.; Shen, Y.; Jiang, X.; Shiratori, N. Secure Communication in Non-Geostationary Orbit Satellite Systems: A Physical Layer Security Perspective. IEEE Access 2019, 7, 3371–3382. [Google Scholar] [CrossRef]
- Li, Y.; An, K.; Liang, T.; Yan, X. Secrecy Performance of Land Mobile Satellite Systems With Imperfect Channel Estimation and Multiple Eavesdroppers. IEEE Access 2019, 7, 31751–31761. [Google Scholar] [CrossRef]
- Kalantari, A.; Zheng, G.; Gao, Z.; Han, Z.; Ottersten, B. Secrecy Analysis on Network Coding in Bidirectional Multibeam Satellite Communications. IEEE Trans. Inf. Forensics Secur. 2015, 10, 1862–1874. [Google Scholar] [CrossRef] [Green Version]
- Zheng, G.; Arapoglou, P.D.; Ottersten, B. Physical Layer Security in Multibeam Satellite Systems. IEEE Trans. Wirel. Commun. 2012, 11, 852–863. [Google Scholar] [CrossRef]
- Bankey, V.; Upadhyay, P.K. Physical Layer Security of Multiuser Multirelay Hybrid Satellite-Terrestrial Relay Networks. IEEE Trans. Veh. Technol. 2019, 68, 2488–2501. [Google Scholar] [CrossRef]
- Lu, W.; Liang, T.; An, K.; Yang, H. Secure Beamforming and Artificial Noise Algorithms in Cognitive Satellite-Terrestrial Networks With Multiple Eavesdroppers. IEEE Access 2018, 6, 65760–65771. [Google Scholar] [CrossRef]
- Guo, K.; Lin, M.; Zhang, B.; Ouyang, J.; Zhu, W.P. Secrecy Performance of Satellite Wiretap Channels With Multi-User Opportunistic Scheduling. IEEE Wirel. Commun. Lett. 2018, 7, 1054–1057. [Google Scholar] [CrossRef]
- Ai, Y.; Mathur, A.; Cheffena, M.; Bhatnagar, M.R.; Lei, H. Physical Layer Security of Hybrid Satellite-FSO Cooperative Systems. IEEE Photonics J. 2019, 11, 1–14. [Google Scholar] [CrossRef]
- Abdrabou, M.; Gulliver, T.A. Authentication for Satellite Communication Systems Using Physical Characteristics. IEEE Open J. Veh. Technol. 2023, 4, 48–60. [Google Scholar] [CrossRef]
- O’Neill, M.; O’Sullivan, E.; McWilliams, G.; Saarinen, M.J.; Moore, C.; Khalid, A.; Howe, J.; Del Pino, R.; Abdalla, M.; Regazzoni, F.; et al. Secure architectures of future emerging cryptography SAFEcrypto. In Proceedings of the ACM International Conference on Computing Frontiers, Como, Italy, 16–19 May 2016; pp. 315–322. [Google Scholar]
- Ostad-Sharif, A.; Abbasinezhad-Mood, D.; Nikooghadam, M. Efficient utilization of elliptic curve cryptography in design of a three-factor authentication protocol for satellite communications. Comput. Commun. 2019, 147, 85–97. [Google Scholar] [CrossRef]
- Murtaza, A.; Pirzada, S.J.H.; Hasan, M.N.; Xu, T.; Jianwei, L. An Efficient Encryption Algorithm for Perfect Forward Secrecy in Satellite Communication. In Advances in Cyber Security; Anbar, M., Abdullah, N., Manickam, S., Eds.; Springer: Singapore, 2020; pp. 289–302. [Google Scholar]
- Pirzada, S.J.H.; Murtaza, A.; Xu, T.; Jianwei, L. Architectural Optimization of Parallel Authenticated Encryption Algorithm for Satellite Application. IEEE Access 2020, 8, 48543–48556. [Google Scholar] [CrossRef]
- Nguyen, H.N. Routing and Quality-of-Service in Broadband LEO Satellite Networks; Springer: Boston, MA, USA, 2003; Volume 2. [Google Scholar]
- Hu, J.; Cai, L.; Zhao, C.; Pan, J. Directed Percolation Routing for Ultra-Reliable and Low-Latency Services in Low Earth Orbit (LEO) Satellite Networks. In Proceedings of the 2020 IEEE 92nd Vehicular Technology Conference (VTC2020-Fall), Victoria, BC, Canada, 18 November–16 December 2020; pp. 1–6. [Google Scholar] [CrossRef]
- Zhao, Z.; Wu, Q.; Li, H.; Lai, Z.; Liu, J. LRAR: A Lightweight Risk-Avoidance Routing Algorithm for LEO Satellite Networks. In Proceedings of the 2021 International Wireless Communications and Mobile Computing (IWCMC), Harbin, China, 28 June–2 July 2021; pp. 223–228. [Google Scholar] [CrossRef]
- Na, Z.Y.; Deng, Z.A.; Chen, N.; Gao, Z.H.; Guo, Q. An active distributed QoS routing for LEO satellite communication network. In Proceedings of the 2015 10th International Conference on Communications and Networking in China (ChinaCom), Shanghai, China, 15–17 August 2015; pp. 538–543. [Google Scholar] [CrossRef]
- Manulis, M.; Bridges, C.P.; Harrison, R.; Sekar, V.; Davis, A. Cyber security in New Space. Int. J. Inf. Secur. 2020, 20, 1–25. [Google Scholar] [CrossRef]
- Riahi Manesh, M.; Kaabouch, N. Cyber-attacks on unmanned aerial system networks: Detection, countermeasure, and future research directions. Comput. Secur. 2019, 85, 386–401. [Google Scholar] [CrossRef]
- Tedeschi, P.; Sciancalepore, S.; Di Pietro, R. Satellite-based communications security: A survey of threats, solutions, and research challenges. Comput. Netw. 2022, 216, 109246. [Google Scholar] [CrossRef]
- Woodard, M.; Sarvestani, S.S.; Hurson, A.R. Chapter Two—A Survey of Research on Data Corruption in Cyber—Physical Critical Infrastructure Systems. In Advances in Computers; Elsevier: Amsterdam, The Netherlands, 2015; Volume 98, pp. 59–87. [Google Scholar] [CrossRef]
- Zhang, Y.; Wang, Y.; Hu, Y.; Lin, Z.; Zhai, Y.; Wang, L.; Zhao, Q.; Wen, K.; Kang, L. Security Performance Analysis of LEO Satellite Constellation Networks under DDoS Attack. Sensors 2022, 22, 7286. [Google Scholar] [CrossRef]
- Meng, W.; Xue, K.; Xu, J.; Hong, J.; Yu, N. Low-Latency Authentication Against Satellite Compromising for Space Information Network. In Proceedings of the 2018 IEEE 15th International Conference on Mobile Ad Hoc and Sensor Systems (MASS), Chengdu, China, 9–12 October 2018; pp. 237–244. [Google Scholar] [CrossRef]
- Pavur, J.; Martinovic, I. Building a launchpad for satellite cyber-security research: Lessons from 60 years of spaceflight. J. Cybersecur. 2022, 8, tyac008. [Google Scholar] [CrossRef]
- Alabdan, R. Phishing Attacks Survey: Types, Vectors, and Technical Approaches. Future Internet 2020, 12, 168. [Google Scholar] [CrossRef]
- Qi, M.; Chen, J.; Chen, Y. A secure authentication with key agreement scheme using ECC for satellite communication systems. Int. J. Satell. Commun. Netw. 2019, 37, 234–244. [Google Scholar] [CrossRef]
- Alghawazi, M.; Alghazzawi, D.; Alarifi, S. Detection of SQL Injection Attack Using Machine Learning Techniques: A Systematic Literature Review. J. Cybersecur. Priv. 2022, 2, 764–777. [Google Scholar] [CrossRef]
- Rodríguez, G.E.; Torres, J.G.; Flores, P.; Benavides, D.E. Cross-site scripting (XSS) attacks and mitigation: A survey. Comput. Netw. 2020, 166, 106960. [Google Scholar] [CrossRef]
- Richardson, C.; Reith, M.; Henry, W. Ensuring the Security of Space Systems from Eavesdropping Attacks. In Proceedings of the International Conference on Cyber Warfare and Security, Albany, NY, USA, 17–18 March 2022; Volume 17, pp. 522–526. [Google Scholar]
- Scanlan, J.; Styles, J.; Lyneham, D.; Lutzhoft, M. New Internet Satellite Constellations to Increase Cyber Risk in Ill-Prepared Industries. In Proceedings of the 70th International Astronautical Congress (IAC), Washington, DC, USA, 21–25 October 2019; pp. 1–12. [Google Scholar]
- Eppstein, D. Finding the k Shortest Paths. SIAM J. Comput. 1998, 28, 652–673. [Google Scholar] [CrossRef] [Green Version]
- Dong, X.J.; Shi, H.S. A Shortest Path Algorithm Based on Mobile Agent in LEO Satellite Network. In Proceedings of the 2008 4th International Conference on Wireless Communications, Networking and Mobile Computing, Dalian, China, 12–14 October 2008; pp. 1–5. [Google Scholar] [CrossRef]
- Eilam-Tzoreff, T. The disjoint shortest paths problem. Discret. Appl. Math. 1998, 85, 113–138. [Google Scholar] [CrossRef] [Green Version]
- Chondrogiannis, T.; Bouros, P.; Gamper, J.; Leser, U.; Blumenthal, D.B. Finding k-shortest paths with limited overlap. VLDB J. 2020, 29, 1023–1047. [Google Scholar] [CrossRef]
- Frazier, P.I. A tutorial on Bayesian optimization. arXiv 2018, arXiv:1807.02811. [Google Scholar]
- Nogueira, F. Bayesian Optimization: Open Source Constrained Global Optimization Tool for Python. 2014. Available online: https://github.com/fmfn/BayesianOptimization (accessed on 8 January 2023).
Algorithm | PMF |
---|---|
k-SP | |
k-DG | |
k-DS | |
k-LO |
Algorithm | Average | Median |
---|---|---|
k-SP | ||
k-DG | ||
k-DS | ||
k-LO | ||
k-RAND |
Algorithm | Average | Median |
---|---|---|
k-SP | ||
k-DG | ||
k-DS | ||
k-LO | ||
k-RAND |
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content. |
© 2023 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
Share and Cite
Fratty, R.; Saar, Y.; Kumar, R.; Arnon, S. Random Routing Algorithm for Enhancing the Cybersecurity of LEO Satellite Networks. Electronics 2023, 12, 518. https://doi.org/10.3390/electronics12030518
Fratty R, Saar Y, Kumar R, Arnon S. Random Routing Algorithm for Enhancing the Cybersecurity of LEO Satellite Networks. Electronics. 2023; 12(3):518. https://doi.org/10.3390/electronics12030518
Chicago/Turabian StyleFratty, Ruben, Yuval Saar, Rajnish Kumar, and Shlomi Arnon. 2023. "Random Routing Algorithm for Enhancing the Cybersecurity of LEO Satellite Networks" Electronics 12, no. 3: 518. https://doi.org/10.3390/electronics12030518
APA StyleFratty, R., Saar, Y., Kumar, R., & Arnon, S. (2023). Random Routing Algorithm for Enhancing the Cybersecurity of LEO Satellite Networks. Electronics, 12(3), 518. https://doi.org/10.3390/electronics12030518