Preventing DDoS attacks in Path Identifiers-Based Information Centric Networks

被引:3
作者
Al-Duwairi, Basheer [1 ]
Ozkasap, Oznur [2 ]
机构
[1] Jordan Univ Sci & Technol, Dept Network Engn & Secur, Irbid 22110, Jordan
[2] Koc Univ, Dept Comp Engn, Istanbul, Turkey
来源
NOMS 2020 - PROCEEDINGS OF THE 2020 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2020: MANAGEMENT IN THE AGE OF SOFTWARIZATION AND ARTIFICIAL INTELLIGENCE | 2020年
关键词
SERVICE;
D O I
10.1109/noms47738.2020.9110388
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Information Centric Networks (ICNs) have emerged in recent years in order to provide effective mechanisms for content distribution and retrieval. However, these future network architectures are vulnerable to Distributed Denial of Service Attacks (DDoS). In this paper, we propose an effective mechanism to counter these attacks in path identifier-based information centric networks. The proposed mechanism, called GET Message logging based filtering (GMLF), employs Bloom filter based logging to store incoming GET messages such that corresponding content messages are verified, while filtering packets originating from malicious hosts.
引用
收藏
页数:5
相关论文
共 19 条
  • [1] DADI: Defending against distributed denial of service in information-centric networking routing and caching
    AbdAllah, Eslam G.
    Zulkernine, Mohammad
    Hassanein, Hossam S.
    [J]. SECURITY AND PRIVACY, 2018, 1 (02):
  • [2] Al-Duwairi B, 2009, IEEE ICC, P1057
  • [3] Antonakakis M, 2017, PROCEEDINGS OF THE 26TH USENIX SECURITY SYMPOSIUM (USENIX SECURITY '17), P1093
  • [4] SPACE/TIME TRADE/OFFS IN HASH CODING WITH ALLOWABLE ERRORS
    BLOOM, BH
    [J]. COMMUNICATIONS OF THE ACM, 1970, 13 (07) : 422 - &
  • [5] Compagno A, 2013, C LOCAL COMPUT NETW, P630, DOI 10.1109/LCN.2013.6761300
  • [6] Dixon C., P NDSI 2008
  • [7] Jacobson V., 2009, Proceedings of the 5th international conference on Emerging networking experiments and technologies, P1, DOI [10.1145/1658939.1658941, DOI 10.1145/1658939.1658941]
  • [8] Kandula S., 2005, P USENIX NSDI 2005 B
  • [9] NetFence: Preventing Internet Denial of Service from Inside Out
    Liu, Xin
    Yang, Xiaowei
    Xia, Yong
    [J]. ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2010, 40 (04) : 255 - 266
  • [10] On the Benefits of Keeping Path Identifiers Secret in Future Internet: A DDoS Perspective
    Luo, Hongbin
    Chen, Zhe
    Li, Jiawei
    Vasilakos, Thanos
    [J]. IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT, 2018, 15 (02): : 650 - 664
12