Detection and Defense of Cache Pollution Attacks Using Clustering in Named Data Networks

Yao, Lin; Fan, Zhenzhen; Deng, Jing; Fan, Xin; Wu, Guowei

doi:10.1109/tdsc.2018.2876257

Cited by 30 publications

(11 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Figure 7 shows the comparison result of the detection accuracy with the light weight mechanism method proposed in [17].…”

Section: Analysis Of Resultsmentioning

confidence: 99%

“…e cache pollution attack in the IP network is mostly directed to the cache server, and the target of the cache pollution attack in the ICN is the routing node in the network. is also shows that, in ICN cache pollution attacks, cache routes are difficult to perceive the existence of attacks [16,17]. As an informationcentric network architecture with network cache, NDN is vulnerable to cache poisoning and pollution attacks.…”

Section: Related Workmentioning

confidence: 99%

“…Cache pollution is classified as cache pollution: TP(true positive) Cache uncontaminated is classified as cache uncontaminated: TN(true negative) Cache uncontaminated is classified as cache pollution: FP(false positive) Cache pollution is classified as cache uncontaminated: FN (false negative). Precision (Pre), which is the actual proportion of the sample classified as cache pollution, is calculated as equation (17).…”

Section: Evaluating Indicatormentioning

confidence: 99%

See 2 more Smart Citations

Cache Pollution Detection Method Based on GBDT in Information-Centric Network

Man

Guo

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

There is a new cache pollution attack in the information-centric network (ICN), which fills the router cache by sending a large number of requests for nonpopular content. This attack will severely reduce the router cache hit rate. Therefore, the detection of cache pollution attacks is also an urgent problem in the current information center network. In the existing research on the problem of cache pollution detection, most of the methods of manually setting the threshold are used for cache pollution detection. The accuracy of the detection result depends on the threshold setting, and the adaptability to different network environments is weak. In order to improve the accuracy of cache pollution detection and adaptability to different network environments, this paper proposes a detection algorithm based on gradient boost decision tree (GBDT), which can obtain cache pollution detection through model learning. Method. In feature selection, the algorithm uses two features based on node status and path information as model input, which improves the accuracy of the method. This paper proves the improvement of the detection accuracy of this method through comparative experiments.

show abstract

“…Figure 7 shows the comparison result of the detection accuracy with the light weight mechanism method proposed in [17].…”

Section: Analysis Of Resultsmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Evaluating Indicatormentioning

confidence: 99%

See 1 more Smart Citation

Cache Pollution Detection Method Based on GBDT in Information-Centric Network

Man

Guo

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…To detect an attack, the works [31] and [32] proposed that the cache hit ratio (CHR) can be used to detect the attack in cache pollution-related attacks. Due to the attack similarities between cache pollution and side-channel timing attack, the DaD attack detection is based on CHR calculations.…”

Section: A Adversary Face Detectionmentioning

confidence: 99%

“…Besides the attack performance calculation, the CHR can be used not only to detect an attack but also to identify the face of the router that is being attacked. For instance, the CHR can be used to identify the adversary in an attack detection for cache pollution [32] and [31]. Also, the works [11], [12], and [33] proposed that the side-channel timing attack can be identified by cache hits and misses.…”

Section: A Adversary Face Detectionmentioning

confidence: 99%

Public Key Certificate Privacy in VoNDN: Voice Over Named Data Networks

et al. 2020

View full text Add to dashboard Cite

Named Data Network (NDN) is a network paradigm that attempts to answer today's needs for distribution. One of the NDN key features is in-network caching to increase content distribution and network efficiency. However, this feature may increase the privacy concerns, as the adversary may identify the call history, and the callee/caller location through side-channel timing responses from the cache of trusted Voice over NDN (VoNDN) application routers. The side-channel timing attack can be mitigated by countermeasures, such as additional unpredictable delay, random caching, group signatures, and no-caching configurations. However, the content distribution may be affected by pre-configured countermeasures, which may be against the original purpose of NDN. In this work, the detection and defense (DaD) approach is proposed to mitigate the attack efficiently and effectively. With the DaD usage, an attack can be detected by a multi-level detection mechanism, in order to apply the countermeasures against the adversarial faces. Also, the detections can be used to determine the severity of the attack. In order to detect the behavior of an adversary, a brute-force timing attack was implemented and simulated of the VoNDN application on NDN-testbed. A trusted application that mimics the VoNDN and identifies the cached certificate on a worldwide NDN-testbed. In simulation primary results showed that the multi-level detection based on DaD mitigated the attack about 39.1% in best-route, and 36.5% in multicast communications. Additionally, the results showed that DaD preserves privacy without compromising the efficiency benefits of in-network caching in the VoNDN application. INDEX TERMS NDN, VoNDN, certificate privacy, a side-channel timing attack

show abstract

On the realization of VANET using named data networking: On improvement of VANET using NDN‐based routing, caching, and security

Silva

Costa

Macedo

2022

Int J Communication

View full text Add to dashboard Cite

Summary Named data networking (NDN) presents a huge opportunity to tackle some of the unsolved issues of IP‐based vehicular ad hoc networks (VANET). The core characteristics of NDN such as the name‐based routing, in‐network caching, and built‐in data security provide better management of VANET proprieties (e.g., the high mobility, link intermittency, and dynamic topology). This study aims at providing a clear view of the state‐of‐the‐art on the developments in place, in order to leverage the characteristics of NDN in VANET. We resort to a systematic literature review (SLR) to perform a reproducible study, gathering the proposed solutions and summarizing the main open challenges on implementing NDN‐based VANET. There exist several related studies, but they are more focused on other topics such as forwarding. This work specifically restricts the focus on VANET improvements by NDN‐based routing (not forwarding), caching, and security. The surveyed solution herein presented is performed between 2010 and 2021. The results show that proposals on the selected topics for NDN‐based VANET are recent (mainly from 2016 to 2021). Among them, caching is the most investigated topic. Finally, the main findings and the possible roadmaps for further development are highlighted.

show abstract

Detection and Defense of Cache Pollution Attacks Using Clustering in Named Data Networks

Cited by 30 publications

References 23 publications

Cache Pollution Detection Method Based on GBDT in Information-Centric Network

Cache Pollution Detection Method Based on GBDT in Information-Centric Network

Public Key Certificate Privacy in VoNDN: Voice Over Named Data Networks

On the realization of VANET using named data networking: On improvement of VANET using NDN‐based routing, caching, and security

Contact Info

Product

Resources

About