Karim Eldefrawy

Cryptography, Cybersecurity, Privacy

Co-founder and CTO at Confidencial.io
2017-2021: SRI
2011-2016: HRL Laboratories
2006-2010: PhD@UC Irvine

Scientific curiosity

Scientific knowledge map · Paper #15

Privacy-Preserving Location-Based On-Demand Routing in MANETs

Karim Eldefrawy and Gene Tsudik

2011 · IEEE Journal on Selected Areas in Communications, Volume 29, Number 10

  • Theory
  • Applied
  • protocol

What does the paper try to establish?

Can an on-demand MANET route be discovered toward a geographic destination area without requiring durable identities and while limiting what outsiders and insiders learn about the communicating nodes and network topology?

What is the proposed answer?

PRISM adapts AODV to location-centric addressing: a source floods a group-signed request containing a destination area and temporary key, and any node in that area can return an encrypted, group-signed reply over the reverse path. The design protects against outsiders and passive insiders under its cryptographic assumptions, but reveals the queried area and existence of a respondent and requires extensions to address active-insider location fraud and Sybil behavior.

Abstract

Mobile Ad-Hoc Networks (MANETs) are particularly useful and well-suited for critical scenarios, including military, law enforcement as well as emergency rescue and disaster recovery. When operating in hostile or suspicious settings, MANETs require communication security and privacy, especially, in underlying routing protocols. Unlike most networks, where communication is based on long-term identities (addresses), we argue that the location-centric communication paradigm is better-suited for privacy in suspicious MANETs. To this end, we construct an on-demand location-based anonymous MANET routing protocol (PRISM) that achieves privacy and security against both outsider and insider adversaries. We analyze the security, privacy and performance of PRISM and compare it to alternative techniques. Results show that PRISM is more efficient and offers better privacy than prior work.

Provenance: Transcribed from the checked-in full-text PDF; only typography, discretionary hyphenation, and line-break artifacts were normalized.

Six dimensions, kept separate

The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.

The visual spider chart requires JavaScript. The complete values and rationales follow in text.

LowMediumHighN/A = not assessed

A smaller value means less documented support for that dimension, not that the paper is false or unimportant.

Epistemic evidence Medium

The paper gives a concrete protocol, explicit adversary analysis, and repeated simulations of overhead and leakage across mobility models. The security argument is conditional, raw simulation artifacts are unavailable, and no deployment or independent reproduction was audited.

PRISM route-request, route-reply, and forwarding protocol Security and privacy analysis Simulation setup and routing-overhead results Topology leakage and utility evaluation
Auditability High

A complete author copy is checked into the site with source route, page count, and SHA-256 identity. Protocol details and reported simulations are inspectable, although code and raw traces were not located.

PRISM route-request, route-reply, and forwarding protocol Simulation setup and routing-overhead results
Production provenance Medium

Named authorship, an archived author copy, and the journal DOI establish baseline provenance. Contributor roles, simulation lineage, revision history, and tool use are not documented.

Problem, goals, and claimed contribution Official journal publication record
External scrutiny Medium

IEEE JSAC publication and later citations demonstrate scrutiny and attention, but review reports, correction history, adversarial reanalysis, and independent reproduction were not located.

Official journal publication record Citation-count snapshot
Reception High

ResearchGate displayed 107 citations on 2026-07-11, exceeding the rubric's 11-citation high threshold. The count is index-specific and citation contexts were not audited.

Citation-count snapshot
Contribution significance High

The protocol develops a distinct location-centric, on-demand privacy design with quantified topology leakage and has a substantial citation trail, while retaining clear active-insider and infrastructure boundaries.

Problem, goals, and claimed contribution Topology leakage and utility evaluation Limitations and conclusions Citation-count snapshot

Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.

Hierarchical knowledge map

Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.

paper

PRISM

An on-demand, location-addressed MANET routing protocol designed to reduce identity and topology leakage in hostile settings.

Problem, goals, and claimed contribution
  1. scope Design goals explicitly scoped

    PRISM targets tracking resistance, protection from active and passive outsiders and insiders, and acceptable routing cost in critical mobile networks.

    Problem, goals, and claimed contribution
    1. assumption group

      Infrastructure and device assumptions

      assumed

      Nodes know their location, have loose time synchronization and public-key capabilities, and receive credentials and a network-wide key from an offline trusted authority; eviction is only supported between deployments.

      Location-centric model and assumptions
    2. threat model

      Adversary classes

      defined

      The analysis separates passive and active outsiders from passive and active insiders; physical-layer time-difference tracking is explicitly outside the model.

      Outsider and insider adversary classes
  2. protocol PRISM route discovery proposed

    The source broadcasts a request containing the destination area, fresh temporary public key, timestamp, and group signature; nodes flood it while caching only request hashes and reverse-hop state.

    PRISM route-request, route-reply, and forwarding protocol
  3. security claim

    Outsider protection

    conditional analysis

    The network-wide key and cryptographic authentication are intended to exclude outsiders from useful routing traffic and prevent request or reply forgery under the stated assumptions.

    Security and privacy analysis
  4. privacy claim

    Passive-insider privacy

    conditional analysis

    Group-signature unlinkability and temporary keys hide durable identities, but an observer still learns the requested destination area and that some node there replied.

    Security and privacy analysis
  5. limitation

    Active-insider boundary

    explicitly reported

    Base PRISM does not prevent a credentialed insider from location fraud, Sybil behavior, or some man-in-the-middle actions; one-time certificates or tamper-resistant signing/location hardware are proposed extensions.

    Security and privacy analysis
  6. empirical evidence

    Routing-overhead evaluation

    simulation

    Simulations vary 20-100 nodes, query fractions, and three mobility models over repeated 10,000-second runs; overhead rises sharply under an intentionally heavy all-node, five-second query workload and is lower at moderate query rates.

    Simulation setup and routing-overhead results
  7. empirical evidence

    Topology-leakage evaluation

    simulation

    The experiments estimate the fraction of topology exposed by observed route discoveries; leakage depends strongly on query volume and mobility, with group and time-variant mobility revealing less than random waypoint in the tested settings.

    Topology leakage and utility evaluation
  8. scrutiny

    External scrutiny and reception

    journal reviewed

    The work appeared in IEEE JSAC and ResearchGate reports 107 citations; this audit did not inspect review reports, citing contexts, corrections, or an independent implementation.

    Official journal publication record Citation-count snapshot

Source index

Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.

  1. Problem, goals, and claimed contribution Abstract and Sections I-II.A, PDF pages 1-2
  2. Location-centric model and assumptions Sections II-III.A, PDF pages 2-3
  3. Outsider and insider adversary classes Section III.B, PDF page 3
  4. PRISM route-request, route-reply, and forwarding protocol Section IV.A-B and Figure 1, PDF pages 4-5
  5. Security and privacy analysis Section IV.C-F, PDF pages 5-6
  6. Simulation setup and routing-overhead results Section V.A-C, PDF pages 6-8
  7. Topology leakage and utility evaluation Section V.D-E, PDF pages 8-9
  8. Limitations and conclusions Sections IV and VII, PDF pages 5-6 and 9
  9. Official journal publication record IEEE JSAC 29(10), DOI record
  10. Citation-count snapshot ResearchGate displayed Citations (107), observed 2026-07-11; coverage and version merging may differ from other indexes.