In describing AREDN to a fellow ham, the topic of security or malicious interference came up. I also saw the ragchew conversation about and X86 build based on the software.
Is there already a way to control who can join an AREDN mesh? Or are we left with what we do with FM repeaters (you can tell someone to not use the system, but there is limited technology available via Part 97 to prevent use)?
At the moment, there's not a "stable" way. OLSR does have a "secure" plugin that provides this feature. (requires a shared key on all deployed nodes to participate on the mesh) However, this plugin has some bugs and, from my understanding, is no longer maintained by the OLSR team.
At the moment there is no technical method to keep them off.
We had deployed with using the "OLSR Secure" module under V2 protocol but had to pull it at the time because we traced some instability to having the module installed and found various bugs in it that were unknown, This is probably the best chance though for making an "isolated" network but would require us to jump to a V4 protocol, which may be a bit of a ways away at the moment.
At the moment the best really is rules, in that if you change the SSID from AREDN you can claim its a 'closed' system and invite only. Also by being under a different SSID you won't get inadvertent packets in.
Its one of those topics thats floating around on our (well at least mine) "we really wan to see this again" list, but a few other items been ahead of it at the moment (XW hardware for one)
For us to get it in will take a protocol jump (which means the change has to be grouped in with other changes) and would need some significant testing to make sure any flaws that existed have been fully cleaned up (we think we got a large part of it during last code scrub)
Changing the SSID would probably be the best way to indicate it is a closed system. Just like a voice repeater, you could contact unwelcome hams and notify them that they aren't permitted to use the system then and ultimately escalate to the FCC if necessary.
I think my comments from another thread are apropos here:
http://www.aredn.org/comment/473#comment-473
--Phil
Has there been any progress in the ability to block (or perhaps allow) certain nodes from joining a mesh?
Tickets are processed based on many factors including level of interest expressed in the ticket for such features.
Not aware of any plans for secure module to solve the single question of restricting a single node.