计算机科学与探索 ›› 2019, Vol. 13 ›› Issue (3): 429-436.DOI: 10.3778/j.issn.1673-9418.1712051

• 网络与信息安全 • 上一篇    下一篇

V-NDN中PBDA攻击的检测与缓解方法的研究

庞  滨,张  茹,李  茹+   

  1. 内蒙古大学 计算机学院,呼和浩特 010021
  • 出版日期:2019-03-01 发布日期:2019-03-11

Research of PBDA Attack Detection and Mitigation Method in V-NDN

PANG Bin, ZHANG Ru, LI Ru+   

  1. College of Computer Science, Inner Mongolia University, Hohhot 010021, China
  • Online:2019-03-01 Published:2019-03-11

摘要: 命名数据网络是下一代重要的网络体系结构之一。然而,命名数据网络和车辆自组织网络结合时会产生一种新的攻击模式——兴趣包涟漪式广播扩散攻击。针对兴趣包涟漪式广播扩散攻击,提出基于节点间协作的缓解策略,节点通过直接和间接交换PIT表信息得到邻居节点的PIT表,并将邻居节点不同时刻PIT表项与自身PIT对应表项进行比较来丢弃恶意兴趣包,从而保证正常的网络服务。实验结果表明该检测和缓解方法能够提高兴趣包满足率。

关键词: 命名数据网络(NDN), 车辆自组织网络(VANET), 兴趣包涟漪式广播扩散攻击(PBDA), 缓解策略, 节点间协作

Abstract: Named data networking is the important network architecture of next generation network. However, a new attack pattern is found when named data networking and vehicular Ad-hoc network combine, this new attack, named popple broadcast diffusion attack. In this paper, mitigation strategies based on cooperation between nodes are poposed for popple broadcast diffusion attack. Nodes obtain PIT tables of neighboring nodes by directly and indirectly exchanging PIT table information. To ensure the normal network service purposes, PIT tables of neighbor nodes are mapped to their own PIT entries at different time to discard the malicious interest packet. Experimental results show that the detection and mitigation methods can improve the interest packet satisfaction rate.

Key words: named data network (NDN), vehicular Ad-hoc network (VANET), popple broadcast diffusion attack(PBDA), mitigation strategies, internode collaboration