中文摘要：

移动Ad hoc网络具有无线传输的介质、动态改变的拓扑、合作式的路由算法、缺乏中心监督和管理节点等特点,使得安全防御问题日益重要。定义了三种Ad hoc网络中的入侵节点：为了节约能量试图避开网络路由的职责自私节点行为;试图把自己加进路由,引导数据报来到并丢弃的黑洞节点;不转发报文也不发起报文请求的错误节点。针对以上恶意节点的攻击,定义相应的检测功能,引入赏罚机制和有偿转发报文的功能。通过在NS2（Network S imu lator V2）的无线环境下,修改原有DSR协议,模拟加入三种恶意节点攻击的DSR协议,添加有规避机制和监督功能的DSR协议。对实验结果进行分析,新增的检测功能基本达到降低丢报率和控制路由平均跳数增加的效果。

英文摘要：

Security of Mobile Ad hoc network is much more important due to its public transmission media, dynamic topology, cooperative route algorithm, lack of monitoring and managing and etc. Now three kinds of Intrusion nodes are defined： to minimize the spense of energe, Selfish node would skip the responsibility of a router; Black hole nodes which are eager to play the router role in order to discard the useful data packet; Faulty node does not forward or pop up packets due to software or hardware fault. The aim is to simulate the malicious nodes＇ behavior on NS2, and then add the function of monitoring to the DSR routing protocol, compare the results with and without the monitor system. The result shows that the monitor system turns down the packet loss ratio and gets the increase of average route hop under control.