Setia, SanjeevSwankoski, Eric2018-10-222018-10-222017https://hdl.handle.net/1920/11319The open nature of mobile ad hoc networks (MANETs) makes them vulnerable to denial-of-service attacks. With no well-defined access points, network perimeter, or centralized authority, these networks are susceptible to attacks from one or more authorized nodes (insiders) or malicious external entities (outsiders). Mitigation methods for such attacks are critically important, and in this work we explore the use of network capabilities to enforce a deny-by-default network access control policy. While capabilities can minimize the damage caused by malicious adversaries, the aforementioned characteristics of MANETs also complicate the operation of capabilities. Traditional network capability mechanisms are not designed to cope with frequent route changes. The problem is not well-studied, either for unicast-based or multicast-based MANET communication.122 pagesenCopyright 2017 Eric SwankoskiComputer scienceDenial of ServiceMobile Ad Hoc NetworksMulticastNetwork CapabilitiesNetwork SecurityDissertation