Name Filter: A Countermeasure against Information Leakage Attacks in Named Data Networking

Abstract : Named Data Networking (NDN) has emerged as a future networking architecture having thepotential to replace the Internet. In order to do so, NDN needs to cope with inherent problems of the Internetsuch as attacks that cause information leakage from an enterprise. Since NDN has not yet been deployed ona large scale, it is currently unknown how such attacks can occur, let alone what countermeasures can betaken against them. In this study, we first show that information leakage in NDN, can be caused by malwareinside an enterprise, which uses steganography to produce malicious Interest names encoding confidentialinformation. We investigate such attacks by utilizing a content name dataset based on uniform resourcelocators (URLs) collected by a web crawler. Our main contribution is a name filter based on anomalydetection that takes the dataset as input and classifies a name in the Interest as legitimate or not. Ourevaluation shows that malware can exploit the path part in the URL-based NDN name to create maliciousnames, thus, information leakage in NDN cannot be prevented completely. However, we illustrate for thefirst time that our filter can dramatically choke the leakage throughput causing the malware to be 137 timesless efficient at leaking information. This finding opens up an interesting avenue of research that could resultin a safer future networking architecture.
Document type :
Journal articles
Complete list of metadatas
Contributor : Daishi Kondo <>
Submitted on : Wednesday, December 5, 2018 - 7:25:46 PM
Last modification on : Wednesday, July 17, 2019 - 10:24:03 AM
Long-term archiving on : Wednesday, March 6, 2019 - 4:00:36 PM


Files produced by the author(s)




Daishi Kondo, Thomas Silverston, Vassilis Vassiliades, Hideki Tode, Tohru Asami. Name Filter: A Countermeasure against Information Leakage Attacks in Named Data Networking. IEEE Access, IEEE, 2018, pp.65151 - 65170. ⟨10.1109/ACCESS.2018.2877792⟩. ⟨hal-01946259⟩



Record views


Files downloads