Wormhole attacks in wireless networks

Yih Chun Hu, Adrian Perrig

Research output: Contribution to journalArticlepeer-review


As mobile ad hoc network applications are deployed, security emerges as a central requirement. In this paper, we introduce the wormhole attack, a severe attack in ad hoc networks that is particularly challenging to defend against. The wormhole attack is possible even if the attacker has not compromised any hosts, and even if all communication provides authenticity and confidentiality. In the wormhole attack, an attacker records packets (or bits) at one location in the network, tunnels them (possibly selectively) to another location, and retransmits them there into the network. The wormhole attack can form a serious threat in wireless networks, especially against many ad hoc network routing protocols and location-based wireless security systems. For example, most existing ad hoc network routing protocols, without some mechanism to defend against the wormhole attack, would be unable to find routes longer than one or two hops, severely disrupting communication. We present a general mechanism, called packet leashes, for detecting and, thus defending against wormhole attacks, and we present a specific protocol, called TIK, that implements leashes. We also discuss topology-based wormhole detection, and show that it is impossible for these approaches to detect some wormhole topologies.

Original languageEnglish (US)
Pages (from-to)370-379
Number of pages10
JournalIEEE Journal on Selected Areas in Communications
Issue number2
StatePublished - Feb 2006


  • Ad hoc networks
  • Computer network security
  • Computer networks
  • Packet leash
  • TIK
  • Tunneling
  • Wireless local area network (LAN)
  • Wormhole

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Electrical and Electronic Engineering


Dive into the research topics of 'Wormhole attacks in wireless networks'. Together they form a unique fingerprint.

Cite this