# Introduction

ireless communication nowadays surrounds us in many colors and flavors, each with its specific frequency band, coverage, and variety of applications. It has matured to a large volume, and standards have advanced for personal area Networks, local area Networks in addition to Broadband wireless access. In Ad-Hoc networks, every node is inclined to forward data to different nodes, and so the determination of which nodes forward data is made dynamically based totally on the network connectivity. Minimum configuration and brief deployment make Ad-Hoc networks suitable for emergency situations like natural or human-caused disasters, navy conflicts, emergency medical situations and many others.


# a) Routing in Ad Hoc Networks

Mobile ad-hoc Networks alternate their topology frequently and without previous observe makes packet routing in ad-hoc networks a difficult assignment. The cautioned procedures for routing can be divided into topology-based and position-based routing. Fig 1 .1 represents the right category of ad-hoc routing Algorithms. Topology -based routing protocols use the information about the links that exist in the network to carry out packet forwarding. They may be further divided into proactive, reactive, and hybrid strategies.

Proactive algorithms rent classical routing strategies which include distance-vector routing (e.g., DSDV) or link-state routing (e.g., OLSR and TBRPF). They preserve routing facts about the available paths within the network even though those paths are not presently used. In response to this observation, reactive routing protocols had been evolved (e.g., DSR, TORA, and AODV). Reactive routing protocols maintain only the routes which are presently in use, thereby decreasing the load at the network when most effective a small subset of all available routes is in use at any time. however, they nonetheless have a few inherent barriers. Hybrid ad-hoc routing protocols along with ZRP integrate local proactive routing and international reactive routing with the intention to obtain a higher level of efficiency and scalability.

Position-based routing algorithms remove a number of the constraints of topology-based routing by using extra information. as a result does now not require the establishment or maintenance of routes. The nodes have neither to store routing tables nor to transmit messages to maintain routing tables updated. As an in addition benefit, position-based routing supports the delivery of packets to all nodes in a given geographic region in a natural way. This kind of provider is referred to as geocasting.


# b) Attacks on Ad Hoc Networks

Wireless the structure of an Ad-Hoc network, or lack thereof, leads to a few special kinds of attacks. Especially attacks at the connectedness of the network which means that attacks on the routing protocol. A number of those attacks are Routing Loop, Black hole, gray hole, Partitioning, Blackmail, Wormhole, rushing attack, resource consumption, dropping Routing traffic, location disclosure and so forth. 


# c) Security Model and Attributes

The sector of security is big and a few model to apply for attacking the problem is needed. Some of the attributes need to be considered for classifying the one of kind security desires of the applications of an Ad-Hoc network. Which can be Confidentiality, Authentication, Availability, Integrity, Non-Repudiation, fact of discovery, Isolation, lightweight computations, location, Self, Byzantine robustness and many others.


# d) Security of Ad-Hoc Networks

Security vulnerabilities in ad-hoc networks are: Limited computational capabilities: generally, nodes in ad-hoc networks are modular, independent, and restricted in computational functionality and consequently can also grow to be a source of vulnerability after they take care of public-key cryptography at some point of normal operation. Limited power supply: due to the fact nodes generally use the battery as power supply, an interloper can exhaust batteries by developing extra transmissions or excessive computations to be performed by means of nodes.

Challenging key management: Dynamic topology and movement of nodes in an Ad Hoc network make key control difficult if cryptography is used within the routing protocol.


# II. Review of Literature

Farid Bin Beshr et.al (2016), reveal about Adopting Intrusion Detection system (IDS) that allows the routing protocol to avoid misbehavior nodes and links. The IDS have to characteristic low overhead controlling packet, excessive accuracy degree and low price of both false alarms and missed detection rate. The proposed system primarily based on assigning a few nodes called "guard nodes" the obligation of overhearing and reporting the misbehaving nodes. The scheme is proposed to conquer the majority of the drawbacks related to the Watchdog strategies. [1] Chinthanai Chelvan.k et.al (2014), describes EAACK(enhanced Adaptive Acknowledgement) demonstrates better malicious-behavior-detection rates in positive instances while does not greatly have an effect on the network performances. The Intrusion Detection systems named EAACK protocol in particular designed for MANETs and compared to different famous mechanisms includes, Watchdog scheme .The effects confirmed positive performances towards Watchdog in the cases of receiver collision and fake misbehavior record. [2] A Al-Roubaiey et.al(2010) illustrates Adaptive ACKnowledgment (AACK), for fixing great issues: the limited transmission power and receiver collision. This mechanism is an enhancement to the TWOACK scheme where its detection overhead is decreased even as the detection efficiency is increased. The AACK mechanism may not work well on long paths with the intention to take a significant time for the end to end acknowledgments. This problem will deliver the misbehaving nodes more time for losing more packets. [3] P.Nandhini Sri et.al (2016) decides that during this selfish node detection, data packet transmission among the nodes the routing path is mounted and maintained so long as it's far wished and routing overhead is substantially decreased. The simulation end result shows that the detection of the selfish node with a massive delay. Therefore shortcut tree routing (STR) ( )
E
protocol has been proposed in future work that is used for improving the overall performance of the selfish node and also route discovery overhead with low memory consumption and it provides the most appropriate routing path. [4] Usha Sakthivel et.al (2011) finds out's selfish behavior of a node impacts the throughput of the network. The nodes may additionally choose a back down value of shorter duration. An algorithmic technique for misbehaving node detection and isolation in ad hoc networks by way of enhancing the protocol getting used inside the lower layers which consequently improves the performance of the network have been proposed. Similarly, studies can verify the practicality of the proposed concept. [5] Kashyap Balakrishnan et.al (2005) defines network-layer acknowledgment-based schemes, termed the TWOACK and the S-TWOACK schemes, which can be honestly introduced-on to any source routing protocol. The TWOACK scheme detects such misbehaving nodes, after which seeks to relieve the problem with the aid of notifying the routing protocol to keep away from them in future routes. The schemes detect selfish nodes (links) so that other nodes may also avoid them in future route selections, with the goal of universal improvement in end-to-end packet delivery ratio. [6] Suganya.N.R et.al(2013) evaluates, from the angle of reproduction allocation, we have a look at the effect of selfish nodes in a mobile ad hoc network that is termed as selfish replica allocation. In our method, every node computes credit risk facts on different related nodes personally to appraise the degree of selfishness. Our method can detect two unique kinds of routing manipulation even as keeping a low rate of false positives when showing the simulation effects. [7] Rasika Mali et.al (2015) present different techniques for detection of misbehavior of nodes such as Watchdog, ExWatchdog, TWOACK, S-TWOACK, 2ACK and Adaptive ACKnowledgment (AACK), CONFIDANT, Record and Trust Based Detection. All techniques are analyzed with parameters like type of misbehavior, key mechanism used, advantages, limitations an performance evaluation using Packet Delivery Ratio (PDR) and throughput. Still the problem of receiver collision, limited transmission power and partial dropping are unsolved. [8] III. Misbehaving Node Detection in ANET An individual mobile node can also attempt to benefit from other nodes, however, refuse to proportion its own resources. Such nodes are known as selfish or misbehaving nodes and their behavior is termed selfishness or misbehavior. One of the main sources of energy consumption inside the mobile nodes of MANETs is wireless transmission. A selfish node can also refuse to forward data packets to other nodes that allow you to conserve its very own energy.


# a) Misbehavior Detection and Mitigation

To mitigate the unfavorable consequences of routing misbehavior, the misbehaving nodes need to be detected in order that these nodes can be avoided with the aid of all properly-behaved nodes. on this paper, we attention on the subsequent problem. i. Resurrecting Duckling This mechanism can be adapted for node authentication in ad-hoc wireless networks. During the imprinting technique, the devices can trade cryptographic keys for signing messages. it is able to be possible to use the resurrecting ducking method to enforce a key distribution protocol to be used with IP sec or another security protocol.

ii. Packet Dropping The concept of packet dropping committed via the misbehaving nodes. There are kinds of packet dropping carried out by using the misbehaving nodes, simple dropping, and selective dropping. As pointed out earlier than, the simple dropping is typically devoted to the aid of the selfish node, whilst the malicious node includes both simple dropping and selective dropping.

In simple dropping, the misbehaving nodes drop all of the packets now not to or from them; even as in selective dropping, the misbehaving nodes only drop data packets no longer to or from them while forwarding the control packets, including route request, route reply, and many others.

iii. Packet Misrouting Within the MANET, a malicious node can misroute the data packets to its colluding partner or a randomly selected destination with the intention to mount further attacks to the networks or disrupt the regular communication. Throughout the detection process, the detection hardware can pay no attention to the destinations which receive misrouted data packets. All that the detection hardware cares is the misbehaving node misrouting data packets. If the detection hardware identifies that the node is committing packet misrouting, it's going to send out the warning message.


# IV. Proposed Methodology

The proposed system is used to detect the misbehavior routing using 2ACK and additionally take a look at the confidentiality of the data message in MANETs environment. here, we used a scheme referred to as 2ACK scheme, wherein the destination node of the following hop link will send lower back a 2 hop acknowledgment known as 2ACK to suggest that the data packet has been acquired efficiently. The proposed work (2ACK with confidentiality) is as follows.

? If the 2ACK time is much less than the wait time and the original message contents are not altered at the intermediate node then, a message is given to sender that the link is working well. ? If the 2ACK time is more than the wait time and the unique message contents are not altered on the intermediate node, then a message is given to sender that the link is misbehaving. ? If the 2ACK time is more than the wait time and the original message contents are altered at the intermediate node, then the message is given to sender that the link is misbehaving and confidentiality is lost. ? If the 2ACK time is less than the wait time and the original message contents are altered at the intermediate node then, a message is given to sender that the link is working properly and confidentiality is lost. At the destination, a hash code can be generated and in comparison with the sender's hash code to test the confidentiality of the message. Consequently, if the link is misbehaving, sender to transmit messages will now not use it in future and loss of packets may be avoided.


# a) System Model

In the existing system, there is a possibility that when a sender chooses an intermediate link to send some message to destination, the intermediate link may give problems such as the intermediate node may not forward the packets to destination, it may take very long time to send packets or it may modify the contents of the packet. In MANETs, as there is no retransmission of packets once it is sent, hence care is to be taken that packets are not lost.

Noting that a misbehaving node can either be the sender or the receiver of the next-hop link, we have focused on the problem of detecting misbehaving links instead of misbehaving nodes using 2ACK scheme. In the next-hop link, a misbehaving sender or a misbehaving receiver has a similar adverse effect on the data packet. It will not be forwarded further. The result is that this link will be tagged. Our approach is used to discuss the significant simplification of the routing detection mechanism and also checking the confidentiality of the message in MANETs environment.

Module 1: Sender module (Source node). The task of this module is to read the message and then divide the message into packets of 48 bytes in length, send the packet to the receiver through the intermediate node and receive the acknowledgement from the receiver node through the intermediate node. After sending every packet the "Cpkts" counter is incremented by 1. 2ACK time is compared with the wait time. If 2ACK is less than the wait time, "Cmiss" counter is incremented by 1. The ratio of "Cmiss" to "Cpkts" is compared with the "Rmiss" (a threshold ratio). If it is less than "Rmiss", the link is working properly otherwise misbehaving.

Module 2: Intermediate module (Intermediate node). The task of this module is to receive a packet from the sender, alter/don't alter the message and send it to the destination. Get 2ACK packet from the receiver and send 2ACK packet to the sender. Module 3: Receiver module (Destination node). The task of this module is to receive a message from the intermediate node, take out destination name and hash code and decode it. Compare the hash code of source node and the destination node for security purpose. Send 2ACK to source through the intermediate node.


# b) Algorithm of 2ACK Scheme and Ant Implementation

We have used the triplet of N1 ? N2 ? N3 as an example to illustrate 2ACK's pseudo code. Where N1 is assumed as the source node, N2 is the intermediate node and N3 is the destination node. Note that such codes run on each of the sender/receivers of the 2ACK packets.

Nomenclature: {Cpkts = the number of the message packets sent, Cmiss = the number of the 2ACK packets missed, d = the acknowledgment ratio. WT = waiting time, i.e., the maximum time allotted to receive 2ACK packet}


# Global Journal of Computer Science and Technology

Volume XVIII Issue I Version I Take out destination name and hash code; Decode the message; Send 2ACK packet to N2; end iv. Ant N1 and N3 parallel while (true) do if ((Cmiss/Cpkts)>d and (hash code of source msg) ! = (hash code of destination msg)) then Link is misbehaving and the confidentiality is lost; end if ((Cmiss/Cpkts)<d and (hash code of source msg) ! = (hash code of destination msg)) then Link is working properly and the confidentiality is lost; end if ((Cmiss/Cpkts)>d and (hash code of source msg) =(hash code of destination msg)) then Link is misbehaving; end if ((Cmiss/Cpkts)<d and (hash code of source msg) =(hash code of destination msg)) then Link is working properly; end end


# V. Result and Discussion

We have used NS2 in our evaluation. We have selected 1000 * 1000m in AODV and 2500*2500m in Ant-Based AODV as our network size and generate 50 mobile nodes in both networks. To explain the various performance metrics required for evaluation of protocols, to reiterate the black hole attack, we begin with the overview of performance parameters that includes End-to-end delay, Throughput, Bit Error Rate and Packet Delivery Ratio. The parameters have to be measured against iteration. Year 2 018   In Figure 5.1 shows the comparative relation of bit error rate in the presence of misbehaving attack and with optimization using ant colony optimization algorithm and shows that bite error measure is less with optimization as compared to the effect of attack in the network. This measure should be less for the efficient network.


# ii. Throughput

The amount of data transferred from one place to another or processed in a specified amount of time.  In Figure 5.2 shows the throughput measure with attack and after optimization and shows that this measure is having high throughput after optimization. The throughput is defined as the network performance with the successful delivery of the packets from source to the destination in an efficient manner.


# iii. End to End Delay

End to End Delay refers to the time taken for a packet to be transmitted across a network from source to destination. The packet delivery rate is defined as the number of packets successfully received to the destination node and the resulting graph of Ant AODV shows that the 15% more packets are delivered than the network in the presence of an attack.


# b) Comparison of Aodv Routing Protocol using Aco

In table 1 we have compared the average values of AODV and AODV with ACO. In this, we have used the four different no. of nodes 50, 60, 70 and 80, and then we count the average value of all four parameters with 10 iterations for those nodes. At last the proactive and reactive routing protocols parameters with their nodes have been compared. 


# ( )

For throughput on 50, 60, 70 and 80 no. of nodes the AODV performs 25%, 21%, 47% and 53% better results than the ANT BASED AODV Overall gives 36% improved results.

For end-to-end delay on 50, 60, 70 and 80 no. of nodes the AODV shows 51%, 60%, 57% and 52% better results than AODV. Overall ANT BASED AODV shows 50% better performance.

For Bit error rate on 50, 60, 70 and 80 no. of nodes the ANT BASED AODV shows 51%, 60%, 57% and 52% better results than AODV. Overall ANT BASED AODV shows 50% better performance. So AODV has high bit error rate.

For packet delivery ratio on 50, 60, 70 and 80 no. of nodes the ANT BASED AODV shows 41%, 19%, 45% and 49% better performance than AODV. The ANT BASED AODV deliver packets 34% faster.


# VI. Conclusion and Future Enhancement

Node Misbehavior in MANET a serious issue in Mobile Ad-hoc Network. In the issue produce communication delay in Packet Delivery Rate, Throughput, and Overhead. We have investigated the performance degradation of the network because of a misbehaving node in MANET.

The AODV protocol with the Ant Optimization is used to detect the misbehaving node. The 2ACK scheme provides the detecting mechanism of misbehavior node from sender to receiver. The 2 ACK scheme tagged on the misbehaved node in the network. The receiver module identifies the 2 ACK has been tagged packet for retransmission. The retransmission has been performed in ACO optimized routing path. So the ACO Based AODV protocol performing better than AODV.

We have investigated the performance degradation caused by such misbehaving nodes in MANETs. We have analyzed and evaluated a technique, termed ACO, to detect and mitigate the effect of such routing misbehavior. We intend to simulate and analyze the effect of the attack in other routing protocols and can use ACO for better path detection with max-min optimization. In feature misbehaving node recovery with other optimization technique to be performed. There are many more other optimization techniques which perform better in future.
11![Fig.1.1: Classification of AD-Hoc Routing Algorithms](image-2.png "Fig. 1 . 1 :")
51![Figure 5.1: Comparative Relation of Bit Error Rate](image-3.png "Figure 5 . 1 :")
![Total No. of Bytes received/ Simulation time) * (8/1000)kbps.](image-4.png "")
52![Figure 5.2: Throughput Measure with Attack and After Optimization](image-5.png "Figure 5 . 2 :")
5354![Figure 5.3: End To End Delay Measure with Attack and After Optimization In Figure 5.3 shows the End to End delay measure with attack and after optimization and shows the packets are delivered in less interval of time to increase the network lifetime. The end delay is defined as the number of packets received to the destination at fewer intervals of time with less error rate.iv. Packet Delivery RatioPacket Delivery Ratio is defined as the ratio between the received packets by the destination and the generated packets by the source.](image-6.png "Figure 5 . 3 :Figure 5 . 4 :")
51a) ResultsPropertyValueThe Result part is divided into two parts for two different protocols AODV and Ant-Based AODV andRouting ProtocolsAODV, Ant Based AODVfinally, their results have been analyzed in tabular form in table.Area Covered(DSR)2500*2500mArea Covered(OLSR)1000*1000mi. Bit Error Rate Bit error rate is the percentage of bits with errorsCoverage Set250mdivided by the total number of bits over a given timeNo. of Nodes50period.Observation ParametersRatio and Iteration Throughput, End-to-End Delay, Bit Error Rate,Packet, DeliveryEB No .of nodes BER = ½ erfc?Network SimulationNS2Optimization techniqueACONo. Of Iteration10Population Size500
52No. of Nodes
			© 2018 Global Journals 1
			Year 2 018 ( ) E © 2018 Global Journals
		
		
			

				


* 
	
		A Guard Node (GN) based Technique against Misbehaving Nodes in MANET
		
			Farid Bin
		
		
			AhmedBeshr
		
		
			SaeedBin Ishaq
		
		
			TarekRAljabri
		
		
			Sheltami
		
	
	
		Journal of Ubiquitous Systems & Pervasive Networks
		
			7
			1
			
			2016
		
	




* 
	
		EAACK-A Secure Intrusion Detection System for MANET
		
			ChinthanaiKChelvan
		
		
			PrabakaranT VSangeetha
		
		
			Saravanan
		
	
	
		International Journal of Innovative Research in Computer and Communication Engineering
		
			2
			4
			April 2014
		
	




* 
	
		AACK: Adaptive Acknowledgment Intrusion Detection for MANET with Node Detection Enhancement
		
			AAl-Roubaiey
		
		
			TSheltami
		
		
			?
		
		
			AMahmoud
		
		
			EShakshuki
		
		
			HMouftah
		
	
	
		24th IEEE International Conference on Advanced Information Networking and Applications
				
			2010
		
	




* 
	
		Improving The Performance of Selfish Node Detection Using Watchdog Method in Manet
		
			PSri
		
		
			DKarthikeyan
		
	
	
		International Journal of Innovative Research in Technology
		
			2
			February 2016
		
	
	Science & Engineering (IJIRTSE)




* 
	
		Misbehaving Node Detection in Mobile Ad Hoc Networks using Multi Hop Acknowledgement Scheme
		
			UshaSakthivel
		
		
			SRadha
		
	
	
		Journal of Computer Science
		
			2011
		
	




* 
	
		TWOACK: Preventing Selfishness in Mobile Ad-Hoc Networks
		
			KashyapBalakrishnan
		
		
			JingDeng
		
		
			PramodKVarshney
		
		IEEE-2005
		
	




* 
	
		Detecting Selfish Nodes in a MANET through Fragmentation in Distributed Environment
		
			.N RSuganya
		
		
			MadhuPriya
		
	
	
		International Journal of Science, Engineering and Technology Research
		
			2
			6
			June-2013
		
	




* 
	
		Techniques for Detection of Misbehaving Nodes in MANET: A Study
		
			RasikaMali
		
		
			SudhirBagade
		
	
	
		International Journal of Scientific & Engineering Research
		
			6
			8
			August-2015