Skip to main content
SpringerLink
Log in

A Perspective Towards NCIFA and CIFA in Named-Data Networking Architecture

  • Conference paper
Book cover Computational Science and Technology

Part of the book series: Lecture Notes in Electrical Engineering ((LNEE,volume 603))

Abstract

Named-Data Networking (NDN) is the most promising architecture in the future Internet. NDN ensure high availability of contents and security of the data packet. However, it may disturb the stability and security in NDN routing such as Interest Flooding Attack (IFA). There are many existing detection and mitigation technique about IFA which labelled a non-collusive type of routing threats where it causes the PIT resources to exhausted and legitimate request could not perform in communication. Unfortunately, all the existing counter-measure mechanism could not defend the Collusive Interest Flooding Attack (CIFA). The attacks initiated with a satisfying interest and malicious data producer will reply to the corresponding request before the expiry of existing PIT entries in NDN router along the path. CIFA is classified as low rate intermittent attack which is very difficult in distinguish with legitimate requests. Thus, CIFA is more vulnerable and threatens than previous NCIFA. Moreover, there is no benchmark datasets or any public datasets to perform further experiments on detecting CIFA. Thus, there is a need to produce reliable datasets for future investigation in detection or mitigation relevant attacks in NDN.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 249.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 219.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Broberg, J., Rajkumar Buyya, Zahir Tari, MetaCDN: Harnessing Storage Clouds for high performance content delivery. Journal of Network and Computer Applications, 2009: p. pp.1012-1022.

    Google Scholar 

  2. Ganesh, V., IoT: Architectures and Security P2P vs ICN, 2017, Aalto University.

    Google Scholar 

  3. J. Pan, S.P., and R. Jain, A survey of the research on future internet architectures. 2011(IEEE Communications Magazine).

    Google Scholar 

  4. M. Amadeo, C.C., A. Iera, and A. Molinaro, Named data networking for iot: an architectural perspective. European Conference on Networks and Communications (EuCNC), 2014(IEEE): p. pp. 1-5.

    Google Scholar 

  5. Cheng Yi, A.A., Ilya Moiseenko, Lan Wang, Beichuan Zhang, Lixia Zhang, A case for stateful forwarding plane. Computer Communications, 2013. 36(7): p. pp. 779-791.

    Google Scholar 

  6. p. Konstantina, A.K., C. Joseph, C. Augustin G.Phillipa, Named Data Networking. ACM SIGCOMM Computer Communication Review, 2014. 44(3): p. 67.

    Google Scholar 

  7. Cisco, Cisco Visual Networking Index: Forecast and Trends, 2017–2022, 2019, Cisco Public: United State.

    Google Scholar 

  8. Gligor, V.D., A note on denial-of-service in operating systems. IEEE Transactions on Software Engineering, 1984. 3: p. pp. 320–324.

    Google Scholar 

  9. Needham, R.M., Denial of service: an example. Communications of the ACM, 1994. 11: p. pp. 42–46.

    Google Scholar 

  10. Reo, J. Small DDoS Attacks Cause Big Problems. 2016 [cited 2018 12 December]; Available from: https://www.corero.com/blog/740-small-ddos-attacks-cause-big-problems.html.

    Google Scholar 

  11. Eslam G. AbdAllah, H.S.H.a.M.Z., A Survey of Security Attacks in Information-Centric Networking. IEEE COMMUNICATION SURVEYS & TUTORIALS, 2015. 17(3): p. pp. 1441-1454.

    Google Scholar 

  12. Eslam G AbdAllah, H.S.H., Mohammad Zulkernine, A Survey of Security Attacks in Information-Centric Networking. IEEE COMMUNICATION SURVEYS & TUTORIALS, 2015. 17(3): p. pp. 1441 - 1454.

    Google Scholar 

  13. François-Xavier Aguessy, F.R., Théo Combe, Edgardo Montes de Oca, Wissam Mallouli, Guillaume Doyen, Tan Nguyen, Rémi Cogranne, Thibault Cholez, Xavier Marchal, Security analysis of the virtualized NDN architecture. Deployment and securisation of new functionalities in virtualized networking environnements, 2016.

    Google Scholar 

  14. V. Jacobson, D.K.S., J. D. Thornton, M. F. Plass, N. H. Briggs, R. L. Braynard. Networking named content. in 5th international conference on Emerging networking experiments and technologies. 2009. ACM.

    Google Scholar 

  15. Lauinger, T., Security & scalability of content-centric networking, 2010, TU Darmstadt.

    Google Scholar 

  16. M. Wahlisch, T.C.S., M. Vahlenkamp, Lessons from the past: Why data-driven states harm future information-centric networking. IFIP Networking Conference, 2013: p. pp. 1-9.

    Google Scholar 

  17. Tan N. Nguyen, R.C., Guillaume Doyen and Florent Retraint ´, Detection of Interest Flooding Attacks in Named Data Networking using Hypothesis Testing. IEEE International Workshop on Information Forensics and Security (WIFS), 2015.

    Google Scholar 

  18. Hani Salah, J.W., Thorsten Strufe, Coordination Supports Security: A New Defence Mechanism Against Interest Flooding in NDN. 40th Annual IEEE Conference on Local Computer Networks, 2015: p. pp. 73-81.

    Google Scholar 

  19. L. Zhang, D.E., J. Burke, V. Jacobson, J. D.Thornton, D. K. Smetters, B. Zhang, G. Tsudik, D. Massey, C. Papadopoulos et al., Named data networking (NDN) project, in Relat´orio T´ecnico NDN-00012010, Xerox Palo Alto Research Center-PARC.

    Google Scholar 

  20. Tan NGUYEN, R.C., Guillaume DOYEN, An Optimal Statistical Test for Robust Detection against Interest Flooding Attacks in CCN. IFIP/IEEE International Symposium on Integrated Network Management (IM2015), 2015: p. pp. 253-260.

    Google Scholar 

  21. Hani Salah, T.S., Evaluating and Mitigating a Collusive Version of the Interest Flooding Attack in NDN. IEEE Symposium on Computers and Communication (ISCC), 2016.

    Google Scholar 

  22. Yonghui Xin, Y.L., Wei Wang, Weiyuan Li, Xin Chen, Detection of collusive interest flooding attacks in named data networking using wavelet analysis. IEEE Military Communications Conference (MILCOM), 2017.

    Google Scholar 

  23. Paolo Gasti, G.T., Ersin Uzun, Lixia Zhang, DoS & DDoS in Named-Data Networking, in Computer Science - Networking and Internet Architecture, Cryptography and Security2012, Harvard University.

    Google Scholar 

  24. J. Tang, Z.Z., Y. Liu, and H. Zhang, Identifying Interest flooding in Named Data Networking. Green Computing and Communications and Cyber, Physical and Social Computing, 2013(IEEE): p. pp. 306-310.

    Google Scholar 

  25. K. Wang, H.Z., Y. Qin, J. Chen, and H. Zhang, Decoupling malicious interests from pending interest table to mitigate interest flooding attacks. Globecom Workshops (GC Wkshps), 2013: p. pp. 963-968.

    Google Scholar 

  26. K. Wang, H.Z., H. Luo, J. Guan, Y. Qin, and H. Zhang, Detecting and mitigating interest flooding attacks in content-centric network. Security and Communication Networks, 2014. 7(4): p. pp. 685-699.

    Google Scholar 

  27. H. Dai, Y.W., J. Fan, and B. Liu, Mitigate DDoS attacks in NDN by interest traceback. IEEE INFOCOM, 2013(NOMEN Workshop).

    Google Scholar 

  28. Amin Karami, M.G.-Z., A hybrid multiobjective RBF-PSO method for mitigating DoS attacks in Named Data Networking. Neurocomputing, 2015(Elsevier): p. pp. 1262-1282.

    Google Scholar 

  29. Naveen Kumar, A.K.S.a.S.S., Evaluating Machine Learning Algorithms for Detection of Interest Flooding Attack in Named Data Networking. International Conference on Security of Information and Networks, 2017. 10.

    Google Scholar 

  30. M. Wahlisch, T.C.S., M. Vahlenkamp, Backscatter from the data plane–threats to stability and security in information-centric network infrastructure. Elsevier Computer Networks, 2013.

    Google Scholar 

  31. Cesar Ghali, G.T., Ersin Uzun, Christopher A. Wood, Living in a PIT-less World: A Case Against Stateful Forwarding in Content-Centric Networking, in Computer Science - Networking and Internet Architecture2015, Cornell University.

    Google Scholar 

  32. Shigeyasu, T., Sonoda, Ayaka, Distributed Approach for Detecting Collusive Interest Flooding Attack on Named Data Networking. International Conference on Network-Based Information Systems (NBiS), 2019. 21.

    Google Scholar 

Download references

Acknowledgement

The authors would like to thank Universiti Malaysia Sabah for funding this research project entitled “Designing a Rule-based Mechanism to Detect the Flash Crowd Attacks During Flash Events” under the SGPUMS-SPBK grant (SBK0359-2017).

Author information

Authors and Affiliations

  1. Faculty of Computing and Informatics, Universiti Malaysia Sabah, Jalan UMS, Kota Kinabalu, Sabah, Malaysia

    Ren-Ting Lee, Yu-Beng Leau, Yong-Jin Park & Joe H. Obit

Authors
  1. Ren-Ting Lee
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yu-Beng Leau
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yong-Jin Park
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Joe H. Obit
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Ren-Ting Lee .

Editor information

Editors and Affiliations

  1. Knowledge Technology Research Unit, Faculty of Computing and Informatics, Universiti Malaysia Sabah, Kota Kinabalu, Malaysia

    Rayner Alfred

  2. School of Information Science, Security and Networks Area, Japan Advanced Institute of Science and Technology, Ishikawa, Japan

    Yuto Lim

  3. Department of Computer Science, Universitas Mulawarman, Samarinda, Indonesia

    Haviluddin Haviluddin

  4. Center of Data and Information Management, Universiti Malaysia Sabah, Kota Kinabalu, Sabah, Malaysia

    Chin Kim On

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Singapore Pte Ltd.

About this paper

Cite this paper

Lee, RT., Leau, YB., Park, YJ., Obit, J.H. (2020). A Perspective Towards NCIFA and CIFA in Named-Data Networking Architecture. In: Alfred, R., Lim, Y., Haviluddin, H., On, C. (eds) Computational Science and Technology. Lecture Notes in Electrical Engineering, vol 603. Springer, Singapore. https://doi.org/10.1007/978-981-15-0058-9_46

Download citation

  • DOI: https://doi.org/10.1007/978-981-15-0058-9_46

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-15-0057-2

  • Online ISBN: 978-981-15-0058-9

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation