<p>Named Data Networking (NDN) represents a paradigm shift toward content-centric architectures but remains critically vulnerable to Interest Flooding Attacks (IFAs), where malicious actors overwhelm router Pending Interest Tables with spurious requests, causing service degradation and denial-of-service. To address the limitations of existing approaches, including high false positives in threshold-based methods and substantial overhead in centralized learning, we propose <Emphasis FontCategory="NonProportional">FL-IFAshield</Emphasis>, a novel federated learning framework for adaptive IFA mitigation. Our solution integrates dynamic Poisson-EMA thresholding for accurate flood detection, entropy-aware federated aggregation to handle non-IID traffic distributions across edge routers, and Byzantine-robust mechanisms with differential privacy guarantees. Comprehensive evaluation on the FIT/IoT-LAB testbed with 100 routers demonstrates exceptional performance: 93.1% F1-score in attack detection, only 5% false positives, 28 ms average end-to-end latency (<InlineEquation ID="IEq1"><EquationSource Format="TEX">\(\Delta t_{\text {e2e}}\)</EquationSource></InlineEquation>), and over 90% legitimate Interest Satisfaction Ratio under sophisticated collusive attacks, while maintaining minimal computational overhead (&lt;9% CPU utilization on ARMv8 routers). <Emphasis FontCategory="NonProportional">FL-IFAshield</Emphasis> significantly improves security performance, offering 35% higher accuracy than static thresholding and 60% lower communication overhead than centralized approaches. While simpler heuristic baselines naturally incur marginally lower computational footprints, our solution delivers the optimal overall operational balance among high precision, low end-to-end latency (<InlineEquation ID="IEq2"><EquationSource Format="TEX">\(\Delta t_{\text {e2e}}\)</EquationSource></InlineEquation>), and resource efficiency in constrained edge computing environments.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Mitigating request flooding attack in named data networking using federated learning

  • Mohamed Lamine Benmaidi,
  • Nasreddine Lagraa,
  • Bouziane Brik,
  • Lotfi Jlali

摘要

Named Data Networking (NDN) represents a paradigm shift toward content-centric architectures but remains critically vulnerable to Interest Flooding Attacks (IFAs), where malicious actors overwhelm router Pending Interest Tables with spurious requests, causing service degradation and denial-of-service. To address the limitations of existing approaches, including high false positives in threshold-based methods and substantial overhead in centralized learning, we propose FL-IFAshield, a novel federated learning framework for adaptive IFA mitigation. Our solution integrates dynamic Poisson-EMA thresholding for accurate flood detection, entropy-aware federated aggregation to handle non-IID traffic distributions across edge routers, and Byzantine-robust mechanisms with differential privacy guarantees. Comprehensive evaluation on the FIT/IoT-LAB testbed with 100 routers demonstrates exceptional performance: 93.1% F1-score in attack detection, only 5% false positives, 28 ms average end-to-end latency (\(\Delta t_{\text {e2e}}\)), and over 90% legitimate Interest Satisfaction Ratio under sophisticated collusive attacks, while maintaining minimal computational overhead (<9% CPU utilization on ARMv8 routers). FL-IFAshield significantly improves security performance, offering 35% higher accuracy than static thresholding and 60% lower communication overhead than centralized approaches. While simpler heuristic baselines naturally incur marginally lower computational footprints, our solution delivers the optimal overall operational balance among high precision, low end-to-end latency (\(\Delta t_{\text {e2e}}\)), and resource efficiency in constrained edge computing environments.