Risk analysis of information-leakage through interest packets in NDN
Résumé
Information-leakage is one of the most important
security issues in the current Internet. In Named-Data Networking
(NDN), Interest names introduce novel vulnerabilities that
can be exploited. By setting up a malware, Interest names can be
used to encode critical information (steganography embedded) and
to leak information out of the network by generating anomalous
Interest traffic. This security threat based on Interest names does
not exist in IP network, and it is essential to solve this issue to
secure the NDN architecture. This paper performs risk analysis
of information-leakage in NDN. We first describe vulnerabilities
with Interest names and, as countermeasures, we propose a namebased
filter using search engine information, and another filter
using one-class Support Vector Machine (SVM). We collected
URLs from the data repository provided by Common Crawl
and we evaluate the performances of our per-packet filters. We
show that our filters can choke drastically the throughput of
information-leakage, which makes it easier to detect anomalous
Interest traffic. It is therefore possible to mitigate informationleakage
in NDN network and it is a strong incentive for future
deployment of this architecture at the Internet scale.
Domaines
Informatique [cs]
Origine : Fichiers produits par l'(les) auteur(s)