Skip to Main content Skip to Navigation
Theses

A Security Monitoring Plane for Information Centric Networking: application to Named Data Networking présenté par

Ngoc Tan Nguyen 1
1 ERA - Environnement de Réseaux Autonomes
ICD - Institut Charles Delaunay
Abstract : The current architecture of the Internet has been designed to connect remote hosts. But the evolution of its usage, which is now similar to that of a global platform for content distribution undermines its original communication model. In order to bring consistency between the Internet's architecture with its use, new content-oriented network architectures have been proposed, and these are now ready to be implemented. The issues of their management, deployment, and security now arise as locks essential to lift for Internet operators. In this thesis, we propose a security monitoring plan for Named Data Networking (NDN), the most advanced architecture which also benefits from a functional implementation. In this context, we have characterized the most important NDN attacks - Interest Flooding Attack (IFA) and Content Poisoning Attack (CPA) - under real deployment conditions. These results have led to the development of micro-detector-based attack detection solutions leveraging hypothesis testing theory. The approach allows the design of an optimal (AUMP) test capable of providing a desired Probability of False Alarms (PFA) by maximizing the detection power. We have integrated these micro-detectors into a security monitoring plan to detect abnormal changes and correlate them through a Bayesian network, which can identify events impacting security in an NDN node. This proposal has been validated by simulation and experimentation on IFA and CPA attacks.
Complete list of metadatas

Cited literature [173 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-02399295
Contributor : Rémi Cogranne <>
Submitted on : Monday, December 9, 2019 - 9:11:04 AM
Last modification on : Friday, October 23, 2020 - 4:34:03 PM
Long-term archiving on: : Tuesday, March 10, 2020 - 2:00:11 PM

File

Tan_NGUYEN_PhD_Thesis.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : tel-02399295, version 1

Collections

HETIC | UTT | CNRS

Citation

Ngoc Tan Nguyen. A Security Monitoring Plane for Information Centric Networking: application to Named Data Networking présenté par. Networking and Internet Architecture [cs.NI]. Université de Technologie de Troyes - UTT, 2018. English. ⟨tel-02399295⟩

Share

Metrics

Record views

357

Files downloads

146