北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2015, Vol. 38 ›› Issue (6): 44-48.doi: 10.13190/j.jbupt.2015.06.010

• 论文 • 上一篇    下一篇

命名数据网络低速缓存污染攻击的协同检测机制

朱轶, 施佳, 龚朴, 曹清华, 苏东   

  1. 江苏大学 计算机科学与通信工程学院, 江苏 镇江 212013
  • 收稿日期:2015-04-20 出版日期:2015-12-28 发布日期:2015-12-01
  • 作者简介:朱轶(1977—),男,副教授,E-mail:zhuyi@ujs.edu.cn.
  • 基金资助:

    国家自然科学基金项目(41474095);江苏省研究生实践创新计划项目(2014-467)

Collaborative Detection Mechanism for Low-rate Cache Pollution Attack in Named Data Networking

ZHU Yi, SHI Jia, GONG Pu, CAO Qing-hua, SU Dong   

  1. School of Computer Science and Communication Engineering, Jiangsu University, Jiangsu Zhenjiang 212013, China
  • Received:2015-04-20 Online:2015-12-28 Published:2015-12-01

摘要:

缓存污染攻击是命名数据网络中的主要安全威胁之一,为解决缓存污染攻击中的低速率攻击问题,在计算网络中相邻多节点请求变动率的基础上,以传输路径中各节点与网络边缘节点请求变动率的相关性为检测依据,提出一种协同检测机制. 仿真结果表明,该机制能有效检测低速攻击行为,与现有主要检测方法相比,可保证较高的正确检测率,同时适当增加协同层数,能降低分散攻击的检测时延.

关键词: 命名数据网络, 缓存污染攻击, 低速攻击, 协同检测

Abstract:

Cache pollution attack is one of main security threats in named data networking. Focusing on low-rate cache pollution attack, the article proposed a collaborative detection mechanism. This mechanism calculates the request variability of every node in transmission path, adopts the request variability correlation between arbitrary middle node and network edge node as detection indicator. Simulations show that the mechanism can improve the detection rate, ensure the detection reliability. With appropriate collaborative nodes, it can detect locality-disruption more quickly. Compared with other typical detection methods, it is an effectively detection way for low-rate cache pollution attack.

Key words: named data networking, cache pollution attack, low-rate attack, collaborative detection

中图分类号: