Information-leakage in NDN: Detecting anomalous names

Daishi Kondo, Thomas Silverston, Hideki Tode, Tohru Asami, Perrin Olivier

研究成果: Article査読

抄録

Information leakage is one the main security threats in today's Internet. It can have a significant impact on companies especially by reducing profits and destroying reputations. As Named-Data Networking (NDN) is a promising alternative for the future internet, it is essential to prevent this security threat. NDN relies on a new networking paradigm based on content name. Indeed, today's users are interested in content and not location, and there is a need for a shift from a host-to-host communication paradigm to a host-to-content one. NDN content names are defined with the traditional URL format commonly used in the Internet. In this work, we propose a novel filtering technique to detect packets with malicious names. Indeed, malicious names are more likely to be generated by malwares through "Targeted Attacks" in order to leak out information from legitimate networks. The filters will be used for the NDN firewall as they cannot rely on IP address anymore. We have performed a comprehensive statistical study of URLs based on extensive crawling experiments of main Web organizations. From our experiments, we have derived filters, which were able to detect 15% of malicious names in our data set. This is an essential step towards preventing information leakage in NDN.

本文言語English
ページ(範囲)43-46
ページ数4
ジャーナルASM Science Journal
2017
Specialissue1
出版ステータスPublished - 2017

ASJC Scopus subject areas

  • General

フィンガープリント 「Information-leakage in NDN: Detecting anomalous names」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル