CAPTURING COLLUSIVE INTEREST FLOODING ATTACKS SIGNAL: A NOVEL MALAYSIA'S STATE NAMED-DATA NETWORKING TOPOLOGY (MY-NDN)

Named-Data Networking (NDN) is a future Internet architecture known as the most innovative Information-centric Networking (ICN) system capable of resolving many traditional IP-based networking issues. To track suspicious and unsatisfied interests, much current research focuses on network threats such as Non-Collusive Interest Flooding Attacks (NCIFA) rather than Collusive Interest Flooding Attacks (CIFA). CIFA is an attack that aims to exhaust the Pending Interest Table (PIT) on a targeted NDN router by returning malicious Interest packets with matching data packets before the PIT entries that are running with a Malicious Data Producer. When the attacks are directed at satisfied interests, the entire process appears to be rational. Because the captured signals are very similar to legitimate requests, identifying CIFA is difficult. CIFA is ineligible for NCIFA's prevention and reduction strategies. We use the CIFA model to capture the CIFA signals, based on MY-NDN topology, through detailed simulation with ndnSIM simulator, because the test dataset and simulated signals for CIFA are unavailable. This paper provides a PIT Capacity, Performance, and Trendline comparison model for the NDN system, as well as an analysis of simulated CIFA signals. The PIT usage is kept below 100 entries, the throughput is kept below 500, and the trendline is not steep before an attack is launched. After the attack is launched, PIT usage remains above 180 entries and close to peak, throughput can be identified as being above 1000, and the trendline shows an exponential difference. This claims that an IFA-based attack will have an impact on the performance of the NDN network.