In recent times, the Internet of Things (IoT) has a significant rise in industries, and we live in the era of Industry 4.0, where each device is connected to the Internet from small to big. These devices are Artificial Intelligence (AI) enabled and are capable of perspective analytics. By 2023, it's anticipated that over 14 billion smart devices will be available on the Internet. These applications operate in a wireless environment where memory, power, and other resource limitations apply to the nodes. In addition, the conventional routing method is ineffective in networks with limited resource devices, lossy links, and slow data rates. Routing Protocol for Low Power and Lossy Networks (RPL), a new routing protocol for such networks, was proposed by the IETF's ROLL group. RPL operates in two modes: Storing and Non-Storing. In Storing mode, each node have the information to reach to other node. In Non-Storing mode, the routing information lies with the root node only. The attacker may exploit the Non-Storing feature of the RPL. When the root node transmits User Datagram Protocol~(UDP) or control message packet to the child nodes, the routing information is stored in the extended header of the IPv6 packet. The attacker may modify the address from the source routing header which leads to Denial of Service (DoS) attack. This attack is RPL specific which is known as Hatchetman attack. This paper shows significant degradation in terms of network performance when an attacker exploits this feature. We also propose a lightweight mitigation of Hatchetman attack using game theoretic approach to detect the Hatchetman attack in IoT.

翻译：近年来，物联网（IoT）在工业领域显著增长，我们正处于工业4.0时代，每个设备——无论大小——都与互联网相连。这些设备具备人工智能（AI）能力，能够进行前瞻性分析。预计到2023年，互联网上将拥有超过140亿个智能设备。这些应用在无线环境下运行，节点面临内存、功耗及其他资源限制。此外，传统路由方法在资源受限设备、有损链路及低数据速率的网络中效率低下。针对此类网络，IETF的ROLL工作组提出了低功耗有损网络路由协议（RPL）。RPL有两种运行模式：存储模式和非存储模式。在存储模式下，每个节点都拥有到达其他节点的信息；在非存储模式下，路由信息仅由根节点保存。攻击者可能利用RPL的非存储特性：当根节点向子节点传输用户数据报协议（UDP）或控制消息包时，路由信息存储在IPv6包的扩展头中。攻击者可能修改源路由头中的地址，从而导致拒绝服务（DoS）攻击。这种特定于RPL的攻击被称为Hatchetman攻击。本文展示了当攻击者利用该特性时，网络性能显著下降。我们还提出了一种基于博弈论的轻量级Hatchetman攻击缓解方法，用于检测物联网中的Hatchetman攻击。