Skip to Main content Skip to Navigation

A Security Monitoring Plane for Information Centric Networking: application to Named Data Networking présenté par

Ngoc Tan Nguyen 1
1 ERA - Environnement de Réseaux Autonomes
ICD - Institut Charles Delaunay
Abstract : The current architecture of the Internet has been designed to connect remote hosts. But the evolution of its usage, which is now similar to that of a global platform for content distribution undermines its original communication model. In order to bring consistency between the Internet's architecture with its use, new content-oriented network architectures have been proposed, and these are now ready to be implemented. The issues of their management, deployment, and security now arise as locks essential to lift for Internet operators. In this thesis, we propose a security monitoring plan for Named Data Networking (NDN), the most advanced architecture which also benefits from a functional implementation. In this context, we have characterized the most important NDN attacks - Interest Flooding Attack (IFA) and Content Poisoning Attack (CPA) - under real deployment conditions. These results have led to the development of micro-detector-based attack detection solutions leveraging hypothesis testing theory. The approach allows the design of an optimal (AUMP) test capable of providing a desired Probability of False Alarms (PFA) by maximizing the detection power. We have integrated these micro-detectors into a security monitoring plan to detect abnormal changes and correlate them through a Bayesian network, which can identify events impacting security in an NDN node. This proposal has been validated by simulation and experimentation on IFA and CPA attacks.
Complete list of metadatas

Cited literature [173 references]  Display  Hide  Download
Contributor : Rémi Cogranne <>
Submitted on : Monday, December 9, 2019 - 9:11:04 AM
Last modification on : Friday, October 23, 2020 - 4:34:03 PM
Long-term archiving on: : Tuesday, March 10, 2020 - 2:00:11 PM


Files produced by the author(s)


  • HAL Id : tel-02399295, version 1




Ngoc Tan Nguyen. A Security Monitoring Plane for Information Centric Networking: application to Named Data Networking présenté par. Networking and Internet Architecture [cs.NI]. Université de Technologie de Troyes - UTT, 2018. English. ⟨tel-02399295⟩



Record views


Files downloads