Interest Flooding Attacks in Named Data Networking and Mitigations: Recent Advances and Challenges
Type de ressource
Auteurs/contributeurs
- Ogunbunmi, Simeon (Auteur)
- Chen, Yu (Auteur)
- Zhao, Qi (Auteur)
- Nagothu, Deeraj (Auteur)
- Wei, Sixiao (Auteur)
- Chen, Genshe (Auteur)
- Blasch, Erik (Auteur)
Titre
Interest Flooding Attacks in Named Data Networking and Mitigations: Recent Advances and Challenges
Résumé
Named Data Networking (NDN) represents a promising Information-Centric Networking architecture that addresses limitations of traditional host-centric Internet protocols by emphasizing content names rather than host addresses for communication. While NDN offers advantages in content distribution, mobility support, and built-in security features, its stateful forwarding plane introduces significant vulnerabilities, particularly Interest Flooding Attacks (IFAs). These IFA attacks exploit the Pending Interest Table (PIT) by injecting malicious interest packets for non-existent or unsatisfiable content, leading to resource exhaustion and denial-of-service attacks against legitimate users. This survey examines research advances in IFA detection and mitigation from 2013 to 2024, analyzing seven relevant published detection and mitigation strategies to provide current insights into this evolving security challenge. We establish a taxonomy of attack variants, including Fake Interest, Unsatisfiable Interest, Interest Loop, and Collusive models, while examining their operational characteristics and network performance impacts. Our analysis categorizes defense mechanisms into five primary approaches: rate-limiting strategies, PIT management techniques, machine learning and artificial intelligence methods, reputation-based systems, and blockchain-enabled solutions. These approaches are evaluated for their effectiveness, computational requirements, and deployment feasibility. The survey extends to domain-specific implementations in resource-constrained environments, examining adaptations for Internet of Things deployments, wireless sensor networks, and high-mobility vehicular scenarios. Five critical research directions are proposed: adaptive defense mechanisms against sophisticated attackers, privacy-preserving detection techniques, real-time optimization for edge computing environments, standardized evaluation frameworks, and hybrid approaches combining multiple mitigation strategies. © 2025 by the authors.
Publication
Future Internet
Volume
17
Numéro
8
Date
2025
Abrév. de revue
Future Internet
Langue
English
ISSN
1999-5903
Titre abrégé
Interest Flooding Attacks in Named Data Networking and Mitigations
Catalogue de bibl.
Scopus
Extra
Publisher: Multidisciplinary Digital Publishing Institute (MDPI)
Référence
Ogunbunmi, S., Chen, Y., Zhao, Q., Nagothu, D., Wei, S., Chen, G., & Blasch, E. (2025). Interest Flooding Attacks in Named Data Networking and Mitigations: Recent Advances and Challenges. Future Internet, 17(8). https://doi.org/10.3390/fi17080357
Axes du RIISQ
Enjeux majeurs
Secteurs et disciplines
Types d'événements extrêmes
Lien vers cette notice