计算机工程与应用 ›› 2019, Vol. 55 ›› Issue (4): 130-136.DOI: 10.3778/j.issn.1002-8331.1712-0037

• 网络、通信与安全 • 上一篇    下一篇

内容中心网中多参数的缓存污染攻击检测算法

刘期烈,李建雄   

  1. 重庆邮电大学 移动通信重点实验室,重庆 400065
  • 出版日期:2019-02-15 发布日期:2019-02-19

Multiple Parameter Detection Algorithm of Cache Pollution Attack in Content Centric Networking

LIU Qilie, LI Jianxiong   

  1. Chongqing Key Lab of Mobile Communications Technology, Chongqing University of Posts and Telecommunications, Chongqing 400065, China
  • Online:2019-02-15 Published:2019-02-19

摘要: 针对内容中心网络中的缓存污染攻击检测问题,以单位时间缓存替换率、内容请求平均跳数、节点流量和低流行内容的稳态存储比例4个参数作为攻击下的节点状态参数,根据模糊层次分析法建立了攻击下的模糊层次结构模型,进而确定了攻击对各个状态参数的影响权重并定义了攻击影响度,通过观测攻击影响度并设置判决门限来检测攻击是否发生。仿真结果与性能分析表明,所提检测算法能有效检测Locality-Disruption和False-Locality两类典型的缓存污染攻击,与现有主要检测算法相比,可保证较高的正确检测率和较低的平均检测时延。

关键词: 内容中心网络, 缓存污染攻击, 模糊层次分析法, 攻击检测

Abstract: Aiming at the detection of cache pollution attack in content centric networking, four parameters are taken as the node status parameters under attack, namely cache replacement ratio per unit time, content average request hops, node traffic and steady state storage ratio of low popular content. This paper builds a fuzzy hierarchy model under attack according to the fuzzy hierarchy analysis, then determines the impact weight of the attack on each parameter and defines the attack impact degree, and finally detects whether the attack occurs by observing attack impact degree and setting the decision threshold. Simulation results and performance analysis show that the proposed algorithm can detect two typical cache pollution attacks effectively, that is Locality-Disruption and False-Locality. Compared with the mainly existing detection algorithms, the proposed algorithm can ensure a higher correct detection ratio and a lower average detection delay.

Key words: content centric networking, cache pollution attack, fuzzy analytic hierarchy process, attack detection