A Review Article on Various Network Security Systems and Solution

INTRODUCTION

The security in PC networks is a quickly developing territory of concern (Kundu, et. al., 2016). A large portion of the important information lives on the network, making network an inescapable substance for survival. There is multiplication of the networks in everyday lives, he is a scholastic or business condition. These little networks are associated further to wide region networks which thus frames the premise of Internet. The Internet is the 'universes biggest gathering of networks that achieves colleges, government labs, business endeavors, and army bases in numerous nations" (Dey & Saha, 2016). In spite of the fact that the Internet interfaces bigger network, for example, those having a place with extensive correspondence organizations. It comprises fundamentally of local area networks (LANs) (Dey & Saha, 2016). The guideline strategy for correspondence on the Internet is the TCP/IP (Transport Control Protocol/Internet Protocol) protocol suite. The Internet, nonetheless, is progressively turning into a situation with different protocols (Choi, et. al., 2008). The reason for the Internet was a test started in 1968 by the Guard Divisions Information Preparing Procedures Office (ARPA/IPTO) to interface PCs over a network with a specific end Destination to guarantee order and control correspondences in case of an atomic war. The first network was known as the ARPAnet, and the task rapidly turned into a 'straight research venture without a particular application' (Jain and Jain, 2010). In the 1980s, the quantity of local area networks expanded essentially and this animated quick development of interconnections to the ARPAnet and different networks. These networks and interconnections are referred to today as the Internet (Saha, et. al., 2012).

PRIMARY NETWORK STAKEHOLDERS

PCs that convey over the Internet are known as a host PC, or just host (Dey & Saha, 2016). A host's association with the Internet can be constant or low maintenance, it can he through dialup or direct associations (Saha, et. al., 2013). Each host PC is recognized by both an interesting 32-bit if address (Internet protocol address) and fqdn (fully qualified domain name). Each of these has two sections: one that determines the host PC, and another that indicates the area (either physical or authoritative) of the host PC (Hu, et. al., 2013). Ip addresses are for the most part composed as four decimal numbers, each somewhere in the range of 0 and 255, and each speaking to a 8-hit octet of the Address. These numbers are isolated by spots and documentation is called spotted decimal documentation, e.g. 172.31.1.6 is a legitimate IP address. IP addresses are coherent passAges binded with individual physical Address of the network interface card, all the more prominently called as Macintosh address. Every one of the correspondences starting with one network hub then onto the next hub happens through physical layer of ISO model, i.e. machine is perceived by the network through its Macintosh address. Keeping in mind the end Destination to setup a TCP/IP network each machine ought to be unicue1y identifiable by means of its IP address. These IP addresses are additionally utilized related to subnet covers which draw a limit among network divides (Dey & Saha, 2016). The first tending to conspire was to utilize the main octet to distinguish the network and afterward to utilize the other three octets to recognize the host. This restricted the Internet to 256 networks. With the quick development in the quantity of LANs (Local area networks), this tending to conspire was surrendered for a tending to plot with three essential classes. This remaining parts the most generally utilized tending to plot (Choi, et. al., 2008). In this "established" tending to conspire, called classfull tending to, entire32 bit address space is isolated as explained in Table 1.1.

A more up to date Internet tending to plot, the tactless bury space steering (CIDR) technique, is likewise being utilized nowadays broadly. Utilizing CIDR, the most critical k bits of each Address indicates the network, and the remaining (32 - k) bits determine the host. The measure of k is unhindered (Dey & Saha, 2016), e.g. 172.31.1.6/24 is CIDR portrayal of 172.31.1.6 with 255.255.255.0 subnet. Space is a "name related with an association, or part of an association, to help distinguish frameworks exceptionally (Yu, et. al., 2009)." Area names are doled out in light of the fact that clients think that its simpler to work with representative names as opposed to IP addresses (Choi, et. al., 2008). FQDN like www.tiet.edu gets converted into IP address by means of DNS (Space Name Framework) lastly into Macintosh address by means of ARP (Address Resolution Protocol). Each host PCs space name is a gathering of names (words or letters) isolated by clusters. Like IP addresses, space names are separated into a host divide and an area partition. The furthest left mark or gathering of names distinguishes the host (Yu, et. al., 2009), and the rest as a rule allude to the area. A precedent is www.tiet.edu, which is a completely qualified area name, since it has finish host and space partitions. In an Internet address, for example, tiet.edu the .edu part is known as a Best Level Space, or TLD. Supposed "TLD registry" houses online informationbases that contain information about the area names in that TLD. The .edu registry informationbase, for instance, contains the Internet Assigned Names and Numbers (ICANN) and are dispersed the world over. Every one of the thirteen contain the same essential information in regards to spaces. ICANN is in charge of overseeing and organizing the Space Name Administrations to guarantee general resolvability. ICANN is a worldwide, non-benefit, private-segment organizing body acting in people in general intrigue. ICANN guarantees that the DNS keeps on working successfully by supervising the dispersion of exceptional numeric IP Addresss and space names. It likewise administers the procedures and frameworks that guarantee that every area name maps to the right IP address.

Lotto has evaluated the development in the quantity of hosts and areas on the Internet since 1981. Since 1986, gauges were made utilizing the ZONE (Fanatic of Name Enlightenment) program (Choi, et. al., 2008). In July 1996, the Internet associated together at least roughly thirteen million host PCs. The review checked the quantity of space names that had IP delivers Assigned to them. Be that as it may, by July 1997, the Area Study was not ready to tally a noteworthy segment of the hosts in the space framework, because of a few associations limiting download access to their area information. The hindering of downloads (or zone exchanges as they are called) had expanded to the point where in the July 1997 review it could just download 75% of the areas. Another overview network was proposed: it tallies the quantity of IP tends to that have been allocated a. name (Jaiswal and Kumar, 2012). Fig. 1: Internet Domain Service Host Count To maintain such an amazing development rate, a strong security framework is turning into an essential for the survival of IT resources. Patterns model that PC Networks have infiltrated profound into our everyday life. The more noteworthy the span and accessibility of the network, the more

A PREAMBLE TO NETWORK SECURITY

Security is upgraded by absence of access; connectivity is advanced by total access. Internet empowered associations; remote connectivity and wandering clientAge have made network peripheries moderately straightforward. Correspondence has moved toward becoming network wise. Individuals are teaming up with peers in the constant, utilizing devices for accommodation as opposed to security. Information has begun to stream iii and outside the association through remote media and numerous clients ask for a wandering profile, with the Destination that they can get to parent network even from faraway places. Ventures keep on investing intensely in border security i.e. to bring security around the network, however not understanding the way that security must be inside the network, i.e. in the network texture itself not just at the fringe. Every one of the protocols, outline strategies and investigating techniques were not characterized or designed with much contemplated security in light of the fact that the Internet's basic advances were produced among a collegial gathering of researchers and specialists amid the 1970's. There was less inspiration to take information on the grounds that everybody needed to share information. Consequently prompting adjustment of acquired engineering and a suite of protocols - and million lines of heritAge working frameworks, stacks and applications - with for all intents and purposes no security foundation. In spite of progressing interests in hostile to infection programming and firewalls, undertakings stay helpless against Attacks. In a PC network, innovative perspectives are regularly the most grounded purpose of barrier from the outside Attacks. However, most Attackers realize that it is hard to infiltrate the outskirts, so they search for simpler prey. In the journey may he meandering clients getting to the network and social and/or building strategies to break—i.e. threat not just lies at the outskirts cottAge may be profound established into the network itself. The kind of danger and the methods by which it picks up section to the ensured resources establish a threat vector. According to (Gupta, et. al., 2013) the aggregate level of interior threats is cited ordinarily higher i.e., these numerous PC wrongdoings, Attacks and infringement start from confided in representatives as appeared in Figure 1.2.

A Firewall or IDS can do nothing to ensure against inside Attacks. Or maybe a firewall can give a misguided sensation that all is well and good, since usually supposition that firewalls obstruct all undesirable access, which isn't totally evident - firewalls enables numerous sorts of movement to pass, some of which may he malevolent. Divided packets or ICMP messAges are burrow through generally working firewall, enabling all assailant to specifically get to the secured assets. Dialup modems that acknowledge associations likewise add to interior threat vectors. E.g. Interior network is behind firewall, an ids and intermediary and so on. Also, clients are not enabled the entrance to voice visit. These clients intentionally or generally associate with Internet for voice talks and so forth. Utilizing dial up associations which totally sidesteps the network security domain of an association as appeared in figure 1.3.

Double—homed frameworks regularly designed by organization for their case to get to inner and also outer network likewise represent an extraordinary danger to the networks. Another potential issue is utilization of sweetheart projects. It alludes to a program gave to a worker on a floppy or Album by a confided in companion, that really contains a Trojan program (intended to open association on the representative's machine. They can be troublesome recognize and wipe out. Inside threats, in spite of the fact that they make probably the most unsafe and omnipresent threats to Outside threat vector's most direction and all inclusive danger is the content kiddie. The content kiddie is somebody searching for the simple murder. They are not out for particular information or focusing on a particular organization. They will probably increase super-client access in the least demanding way that could be available. They do this by concentrating on few exploits, and afterward looking the whole Internet for that endeavor. At some point or another they discover somebody helpless (Chhabra, et. al., 2013). The content kiddie strategy is a straightforward one. It filters the Internet for a particular shortcoming, when they discover it, they abuse it. The vast majority of the apparatuses utilized are mechanized, requiring little collaboration. Some of them are propelled clients who build up their own apparatuses and abandon complex indirect accesses. Others have no clue what they are doing and just know how to type "go" at the order provoke. Despite their ability level, they all offer a typical technique; arbitrarily look for a particular shortcoming, at that point misuse that shortcoming (Chhabra, et. al., 2013). Each network security usage depends on some model, which would he be able to either determined or expected. For the most part edge security models in view of Firewalls or potentially IDS are in employments which are receptive in nature. This model clearly with previously mentioned threats does not have the heartiness and gives misguided feeling that all is well and good foundation. With huge many-sided quality and hacking ease approaching around; challenge is to incorporate security with the network itself. This will prompt self recuperating and self shielding network foundation. To accomplish this, security needs to be proactive i.e. should he a player in the exchanging texture that conveys all the movement: start and pernicious.

Information is vital. Usually delineated as the soul of the developing electronic economy [58]. Business associations and governments depend vigorously on information to lead their every day exercises. Along these lines, the security of information should be overseen and controlled appropriately [158, 129]. Regardless of what the information includes: at whatever point it is client records or classified documentation ninny threats that make information helpless [58. The field of security is worried about ensuring general resources. There are numerous parts of security. Information security is worried about ensuring information and information assets. Network security is worried about ensuring information, equipment, and programming on a PC network [94]. Focal point of this examination work is on Network Security thusly it is vital to consider network security in connection to different parts of Destination that the majority of the information put away in that is constantly right and secured against unplanned information defilement and additionally determined changes. At last, network security requires accessibility of information to its essential beneficiaries at the foreordained occasions no matter what [124]. These three rules that network security must stick to advanced from long stretches of training and experimentation that make up network history.

In the early clays of processing, security was of little worry as the quantity of PCs and the quantity of individuals with access to those PCs was restricted [48, 62]. The main PC security issues, be that as it may, rose as right on time as in the year 1950, when PC start to be utilized for characterized information. Privately (additionally named mystery) was the essential security concern [60], and the essential threats were undercover work and the intrusion of protection. "Several a large number of imbecilic terminals were associated by means of center points and concentrators to the colossal focal handling units, turning tapes, and pivoting drives in some inaccessible cooled, legitimately humidified austere room" [162]. Without the nearness of customer/server network models, time sharing, or multi-client, performing various tasks processors, network security was not the main problem. Network security, be that as it may, did at first understand its significance because of a clerical wrongdoing performed by a software engineer for the money related division of a vast Corporation. He could steal cash from accounts that adjusted their budgetary articulations by exchanging the cash lost through adjusting to a different record. His activities show the underlying threats to network security, which were at the time entirely inner. It was not until the finish of the 1960s and into the 1970s that the earth for network security evolved [133].

networks security perils [44] and prompt the development of the PC Crisis Reaction Group (CERT). CERT is an open association whose objective is to "ponder Internet security vulnerabilities, give occurrence reaction administrations to destinations that have been the casualties of assault, distribute an assortment of security cautions, do explore in wide-region networkd processing, and create information and preparing to help enhance security" [95]. After the "Internet Worm" occasion in 1988 a few research work examined distinctive parts of PC network security. One of the fundamental works by [138] models that, each 4.2BSD framework "trusts" some Format of different frameworks, permitting clients signed into confided in frameworks to execute directions by means of a TCP/IP network without providing a secret phrase. [146] focuses at number of genuine security imperfections inborn in the protocols, paying little heed to the accuracy of any usAge and depicts Attacks in light of these defects, including Sequence number ridiculing, steering Attacks, source address mocking, and verification Attacks. These vulnerabilities give a large number of roads to Attacks. Mistakenly networkd frameworks, unaltered default passwords, item blemishes, or missing security patches are among the most common reasons for the network interruptions. Security vulnerabilities wait and thus make a reproducing ground for Attacks, which even a beginner, can endeavor to make a security break as, shown by [103].

By 2047 as appeared in Figure 2.7 all information will be in the internet including an expansive level of information and inventive works. This pattern is both alluring and unavoidable. The internet will be worked from following three sorts of segments:

• Computer stAges and the substance they hold are made of processors, • Hardware and software interface transducer innovation associates stAges to individuals and other physical frameworks. • Networks administration innovation for PCs is to speak with each other. Cyberspace comprises of a progressive network of networks that associates PC stAges that procedure, store, and interface with the internet utilizes conditions in the physical world. All the information will be networkd, listed, and open by nearly anybody, anyplace, whenever; 24 hours per day, 365 days a year [139]. As both the quantity of Internet clients develops and the gatecrasher devices turn out to be more refined and also simple to utilize, more individuals can wind up effective interlopers. These off-the-rack interlopers (which for the most part pick the hacking apparatus from the Internet and progress toward becoming danger to the networks) are called content kiddies. They will likely increase super-client access in the most straightforward way that could be available. They do this by concentrating on few exploits, and afterward hunting the whole Internet down that endeavor. At some point or another they discover somebody helpless [69] threats to the networks are not just from these content kiddies which generally simply need to perform innocuous tricks, cottAge likewise it has 110W multi day developed into undeniable business with composed groups programmers which can cause decimating violations of obliteration and robbery. These groups Ruptures in network security happen inside by workers and remotely by programmers. "In an assault on the Texas A&M College PC complex, which comprises of 12,000 interconnected PCs, workstations, minicomputers, centralized computers, and servers, an efficient group of programmers could take virtual control of the complex" [162]. The aggregate level of inner threats is cited at 70 to 80 percent i.e. these numerous PC wrongdoings, Attacks and infringement start from inside the network [33]. Displeased representatives for the most part not mollified with their pay, position, or workplace perform numerous such assignments which can prompt opening up the hack entryways for more planned Attacks, e.g. at General Elements Corp's space division in San Diego, a developer, despondent with the span of his paycheck, planted a rationale bomb, an electronic likeness a genuine bomb, intended to wipe out a program to track Chart book rocket parts [124]. Four classifications of Attacks are networkd with a straightforward procedure model given by Stallings [162] as appeared in Figure 2.10:

• Interruption-An asset of the system is destroyed or becomes unavailable or unusable. • Interception-An unauthorized party gains access to an asset. • Modification-An unauthorized party not only gains access to but tampers with an asset. • Fabrication-An unauthorized party inserts counterfeit objects into the system. Interception is seen as an aloof assault, and intrude on Alteration and manufacture are seen as active Attacks. In [76], Howard proposes scientific classification of PC and network Attacks. frameworks by misusing powerlessness. Endeavor can be anything that can be utilized to trade off a machine i.e. obtaining entrance, taking framework disconnected, desensitizing delicate information, and so forth. For instance, experiencing an organization's trash called as dumpster plunging to discover delicate information can be considered as an endeavor [51]. The OnLine Word reference of Processing characterizes an endeavor as a security gap or occasion of security gap". i.e. in the event that there is no shortcoming, there is nothing to abuse. Aggressors access the current shortcomings through some fundamental strides as pointed out by [51]. These include: 1. Passive Surveillance 2. Active Surveillance (examining) 3. Exploiting the framework (a) Gaining access through the accompanying Attacks I. Operating framework Attacks II. Application-level Attacks III. Scripts and test program Attacks IV. Misconfiguration Attacks (b) Hoisting of benefits (c) Foreswearing of Administration 4. Keeping access by utilizing (a) Backdoor (b) Trozan Steed 5. Covering tracks Passive surveillance: Information is essential to playing out any assault procedure. A standout amongst the most well known kinds of Passive Attacks is sniffing. This can yield a considerable measure of information. Uninvolved Attacks, essentially of how they work, probably won't appear as great as active Attacks, however sometimes they give basic information effectively. Aggressor can get hold of scrambled passwords and afterward utilize secret phrase breaking programming disconnected to uncover the privileged insights [51]. Another valuable inactive assault is information Social affair. It very well may

Active Surveillance: The thought behind active surveillance is for the assailant to distinguish defenseless frameworks. This active examining of the frameworks is performed by an aggressor to find the accompanying: • Hosts that are available • The area of switches and firewalls • Operating frameworks running • Ports that are open • Services that are running • Versions of any applications that are running For the most part, aggressors attempt to discover sonic beginning information in as incognito a way as could be expected under the circumstances and after that take a stab at abusing the framework [100]. Aggressors accumulate a bit, test a bit, and proceed in this form until the point that they obtain entrance. Exploiting the System: The framework can be abused by obtaining entrance, raising benefits and dissent of administrations. These techniques can be utilized exclusively or related e.g. an assailant may have the capacity to trade off a client's record to access the framework, cottAge since aggressor does not have root get to aggressor cannot duplicate a delicate document. Now aggressor needs to run a height of benefit assault to expand benefit level with the Destination that proper access can be allowed [51]. Likewise aggressor can utilize the framework as a takeoff platform for Attacks against different networks. In these cases however Attackers does not hurt the frameworks specifically but rather utilize these important assets to hurt others, in fact it implies that casualty machine is hacking into different networks. Operating System Attacks: The more number of administrations and ports are open on a running working framework; more purposes of access are accessible. The default introduce of most, working frameworks has substantial number of administrations running and ports open, along these lines empowering buyers to introduce and network framework with minimum measure of exertion and inconvenience. i.e. intentionally or potentially unconsciously non-secure working framework profiles are setup naturally. The greater part of the associations, once working frameworks are introduced, couldn't care less about fixing and updates [51]. This, leaves a working framework introduced with various vulnerabilities, in this way holding up to be misused. in the greater part of the present programming. The programming improvement cycle for some, applications leaves a great deal to want in wording security [51]. Under tight due date weights the item is discharged and testing isn't careful as it ought to be. Another issue is despite the fact that testing may be stringent it isn't conceivable to test every last element completely. Poor or non-existent blunder financial records for countless gaps, for instance, cushion floods [51]. Cradle floods are presumably the most widely recognized route for Attackers to break into frameworks, particularly Internet servers. In July 2001, worm named "Code Red" in the long run misused more than 300,000 PCs overall running Microsoft's IIS Internet Server. CodeRed I abused a notable Windows Internet Information Server (IIS) support flood powerlessness. The worm was so named on the grounds that it ruined some site pAges with the words "hacked by Chinese". This worm worked in two particular stAge. In its first stAge, the warm utilized a rail Dom IP generator to scan for powerless targets. In the second stAge, the worm ceased engendering and propelled Foreswearing of Administration Attacks against the http:/wwwl.whitehouse.gov site [18]. The calculation for target discovery isn't notable, yet appears to take after these harsh probabilities: half an IP address with same initial 2 octets, 25% an IP address with coordinating first octet and 25% a totally arbitrary IP address [2l]. In the event that it is over the point of confinement, it will overwrite other information that has been put away iii the memory. The greater part of the endeavors could have been expelled if legitimate mistake checking were incorporated [100]. For instance, in the code given beneath, when the source is accumulated and changed over into an executable, the program will allot a square of memory thirty two bytes in length to hold the name string. int main () { char name [31]; printf ("Enter your name:"); gets (name); printf ("Hello, \%s", name); return 0; } Scripts arid Sample Program Attacks:: Incidental contents are in charge of vast number of Attacks [100]. One zone in which there are a ton of test contents is Internet improvement. A considerable measure of early advancement that happened with Active Server PAges (ASP) had a great deal of secondary passAges that aggressors were misusing. At the point when the center working framework or application is introduced, makers disperse samp1 records and contents so the proprietor of the framework can more readily see how the framework functions and can utilize the examples to grow new applications. Prior forms of Apache Internet Server and some Internet browsers accompanied a few contents, the vast majority of which had vulnerabilities. Mis-configuration Attacks: In a few cases, frameworks that ought to be genuinely secure are broken into on the grounds that they were not networkd accurately [100]. The vast majority of directors setup the machines. Without evolving defaults, Misconfiguration is one territory that can be controlled by legitimately teaching the framework proprietors. Elevating Privileges:: a definitive objective of an aggressor is to pick up either root or manAger access to a framework. It is conceivable that aggressor breaks into a framework with minimum benefit by speculating simple secret word at that point attempt to heighten benefits and gain root get to or numerous associations keep visitor accounts active that have constrained access, for this situation assailant would bargain the visitor account. Denial of Service (DoS): On February sixth, 2000. Yippee entry was closed down for 3 hours. At that point retailer Buy.com Inc. (BUYX) was lit the following dirt, hours in the wake of opening up to the world. By that night, (EBAY), Amazon.com (AMZN), and CNN (TWX) had gone dim. Also, early in the day, the disorder proceeded with online dealer E*Trade (ECRP) and others having movement to their destinations for all intents and purposes interfered with [15]. A dissent of-benefit assault is described by an unequivocal endeavor to keep the authentic utilization of an administration [24]. A disseminated dissent of-benefit assault sends numerous assaulting substances to accomplish this objective. In September 2002 there was a beginning of Attacks that over-burden the Internet framework instead of focusing on particular casualties [137]. Dos Attacks are networkd as • bandwidth Attacks, • protocol Attacks, and benefit Attacks as indicated by the sort of the objective (e.g., firewall, Internet server, and switch), an asset that the assault devours (network information transfer capacity, TCP/IP stack) and the abused helplessness (embrace or over-burden). In [16] A. Hussain et al. characterize flooding Dos Attacks in light of number of specialist machines playing out the assault. [135] modeled two scientific categorizations for 'Sequence Attacks and barriers. The assault Format criteria featured shared characteristics and vital highlights of assault methodologies that characterize test and (direct the outline of countermeasures. The resistance scientific classification grouped the plan of existing DDoS guards in view of their outline choices. Keeping Access: Much of the time, after an aggressor accesses a framework, an indirect access is embedded which encourAges assailant to return to the framework calm. A secondary passAge can be as straightforward as adding a record to the framework with most noteworthy benefits. A more advanced indirect access is to overwrite a framework record with an adaptation that has a shrouded include [51]. These changed projects that are introduced are order alluded to as Trojan renditions, since they have a shrouded highlight. Covering Tracks: This is the last advance for the assailant, the most fundamental thing an aggressor does is to tidy up the log document. Normally experienced aggressors erase just the passAges identified with their Attacks [51] on the grounds that vacant log records quickly raise doubt that something isn't right. Another normal programmer procedure is to kill logging when they get to. In [11], Bruce Schneier states that Security is a chain; it's just as secure as the weakest connection. Security is a procedure, not an item. Planning framework security is best done by using a methodical building approach. Frameworks security building is worried about distinguishing security threats, prerequisites and recuperation networks [74]. Numerous receptive and proactive strategies have developed previously and every last one of them has its own particular favorable circumstances and weaknesses. Network Security strategies can be put into following two classes: • Technique which is utilized to anchor information as it travels a network. • Method with regulate what packets may travel the network. The most widely recognized type of security on the Internet is to nearly manAge the development of packets between networks. In the event that

its survival against such sort of an assault. Along these lines, movement control resembles a punctured divider, which permits and refuses a specific sort of activity. The techniques used to direct the movement are Firewalls Interruption Discovery Frameworks and Check. An extensive variety of devices has been produced in the past for parametric security. Toward one side there are Firewalls and at opposite end now-a-days General Danger administration (UTM) frameworks are being utilized.

From the above talks, unmistakably existing network protocols are not adequate to dispense with the malevolent hub which causes the dropping of packets in network framework and thus there are serious issues in the correspondence through networks. The majority of the protocols are all the more particularly centered around moderating certain assaults, while others demonstrate a drop in execution, relating to packet conveyance portion, standardized steering load and end to end delay. Other than we have seen that a portion of the protocols neglect to pass judgment on the vitality utilization of the hubs present in dependable course. Examination demonstrates that making a protocol more secured, we need to make different QoS parameters bargained, suggesting a necessity of exchange off. In the above work, we have appropriated the secured protocols uninterested parts with particular reason and reasons.

1. A. Kundu, R. Misra, A. Kar, S. Debchoudhury, S. Pareek, S. Nayak, R. Dey (2016). ―On Demand Secure Routing Protocol Using Convex-Hull & K-Mean Approach In Manet‖ in proc. of 7th International Conference and Workshop on Computing and Communication (UEMCON -2016), New York City, USA.,IEEE Xplore Digital Library, October 2016, pp. 1-5. 2. R. Dey, H. N. Saha (2016). ―Different Routing Threats and its Mitigations Schemes for Mobile ad-hoc Networks (MANETs) –A Review‖, IPASJ International Journal of Electronics & Communication (IIJEC) Vol.4 No.3 pp. 27-34, March 2016. 3. R. Dey, H. N. Saha (2016). ―Secure Routing Protocols For Mobile Ad-Hoc Network (Manets) –A Review‖ International Journal of Emerging Trends & Technology in Computer Science (IJETTCS) Vol.5, No. 1, pp. 74-79, February 2016. Mobile Ad Hoc Networks,‖in porc. of IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing, pp. 343-348. 5. S. Jain and S. Jain (2010). ―Detection and prevention of wormhole attack in mobile adhoc networks‖ International Journal of Computer Theory and Engineering, vol.2, no.1, February 2010. 6. H. N. Saha, D. Bhattacharyya, P. K. Banerjee, A. Bhattacharyya , A. Banerjee and D. Bose (2012). ―Study of Different Attacks in MANET with its Detection & Mitigation Schemes,‖ International Journal of Advanced Engineering Technology (IJAET), vol. 3, no. 1, pp. 383-389, January 2012. 7. H. N. Saha, D. Bhattacharyya, B. Banerjee, S. Mukherjee, R. Singh and D. Ghosh (2013). ―A Review On Attacks And Secure Routing Protocols In Manet,‖ International Journal of Innovative Research and Review (JIRR), vol. 1, no. 2, pp. 12-36, December 2013. 8. Y. C. Hu, A. Perrig and D. Johnson (2013). ―Packet leashes: a defense against wormhole attacks in wireless networks,‖ in proc. of the 22nd Annual Joint Conference of the IEEE Computer and Communications Societies, Vol. 3, pp. 1976–1986. 9. M. Yu, M. Zhouand W and Su (2009). ―A Secure Routing Protocol against Byzantine Attacks for MANET in Adversarial Environments,‖ IEEE Transactions on Vehicular Technology, vol. 58, no. 1, pp. 449-460, January 2009. 10. S. Choi, D. Y. Kim, D.Y. Lee and J. I. Jung (2008). ―Attack Prevention Algorithm in Mobile Ad Hoc Networks,‖in porc. of IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing, June 2008, pp. 343-348. 11. P. Jaiswal and R. Kumar (2012). ―Prevention of Black Hole Attack in MANET,‖ International Journal of Computer Networks and Wireless Communications (IJCNWC), vol.2, no5, October 2012. 12. K. Gupta, M. Gujral and Nidhi (2013). ―Secure Detection Technique Against Blackhole Attack For Zone Routing 448, June 2013. 13. M. Gajera and S. K. Sowmya (2013). ―Prevention of Black Hole Attack in Secure Routing Protocol,‖ International Journal of Science and Research (IJSR), vol. 2 no. 6, pp. 221-224, June 2013. 14. M. Chhabra, B. Gupta and A. Almomani (2013). ―A Novel Solution to Handle DDOS Attack in MANET,‖ Journal of Information Security, pp.165-179, June 2013. 15. A. Jain, A. Jain and P. K. Sagar (2010). ―Various Security Attacks and Trust Based Security Architecture for MANET," Global journal of Computer Science and Technology, vol.10, no. 14, pp 32-36, November 2010. 16. B. Wu, C. Jianmin and J. Wu, M. Cardei (2007). "A Survey on Attacks and Countermeasures in Mobile Ad Hoc Networks,"wireless/mobile network security, Springer, Part II, pp. 103-135. 17. I. Ullah and S. U. Rahaman (2010). ―Analysis of Black Hole Attack on MANET Using Different MANET Routing Protocols,‖ in Master Thesis Electrical Engineering Thesis no: MEE 10: p. 62. 18. K. Vishnu and A. J. Paul (2010). ―Detection and removal of Cooperative Black/Gray hole attack in Mobile Adhoc Networks‖ International Journal of Computer Application (IJCA), vol.1, No. 22 January 2010. 19. V. Mahajan and M. Natu, A. Sethi (2008). ―Analysis of wormhole intrusion attacks in MANET‖. In proc. of IEEE Military Communications Conference (MILCOM), November 2008, pp. 1-7. 20. A. Kaur and D. S. Wadhwa (2013). "Effects of Jelly Fish Attack on Mobile Ad-Hoc Network‘s Routing Protocols," International Journal of Engineering Research and Applications, vol. 3, no 5, pp. 1694-1700. 21. K. Konate and A. Gaye (2011). ―A Proposal Mechanism Againstthe Attacks: Cooperative Blackhole, Blackmail, Overflow and Selfish in Routing Protocol of Mobile AdHoc Network,‖ International Journal of Future Generation Communication and Networking. vol.4, no. 2, pp.69-80. Ad hoc Network: A Review,‖ International Journal of Computer Application (IJCA), vol.64, no 3, pp.16- 22.

HOD (Computer Science), Mata Jeeti Ji Girls College, Suratgarh, Rajasthan drsaurabhkwatra@rediffmail.com