Loading [a11y]/accessibility-menu.js
Coordination supports security: A new defence mechanism against interest flooding in NDN | IEEE Conference Publication | IEEE Xplore

Coordination supports security: A new defence mechanism against interest flooding in NDN


Abstract:

Named-Data Networking (NDN) is a promising architecture for future Internet. Its design, however, can be misused to perform a new DDoS attack known as the Interest Floodi...Show More

Abstract:

Named-Data Networking (NDN) is a promising architecture for future Internet. Its design, however, can be misused to perform a new DDoS attack known as the Interest Flooding Attack (IFA). In IFA, the attacker issues non-satisfiable interest packets, aiming to drop legitimate interest packets by overwhelming pending interest tables in NDN routers. Prior defence mechanisms are not highly effective, harm legitimate interest packets, and/or incur high overhead. We propose a coordinated defence mechanism against IFAs. We realize our solution by adapting CoMon, a framework that we developed previously to coordinate caching-related decisions in NDN, motivated by its effective, yet affordable, coordination. In our solution, IFAs are detected and mitigated by few routers based on aggregated knowledge of traffic and forwarding states. These routers are selected by a novel heuristic enabling them to observe the entire traffic at an early stage. Extensive simulations confirm the feasibility and effectiveness of our solution.
Date of Conference: 26-29 October 2015
Date Added to IEEE Xplore: 07 January 2016
ISBN Information:
Conference Location: Clearwater Beach, FL, USA

References

References is not available for this document.