MSIDN: Mitigation of Sophisticated Interest flooding-based DDoS attacks in Named Data Networking

Ahmed Benmousa, Abdou el Karim Tahari, Chaker Abdelaziz Kerrache, Nasreddine Lagraa, Abderrahmane Lakas, Rasheed Hussain, Farhan Ahmad

Research output: Contribution to journalArticlepeer-review

27 Citations (Scopus)


Named Data Networking (NDN) is a promising candidate for Future Internet Architecture (FIA), wherethe focus of communication is the content itself rather than the source of the requested content.NDN is one of the implementations of Information-Centric Networking (ICN). Among other salientfeatures, NDN provides intrinsic security where security is provided to the content directly, ratherthan securing the communication channel. However, despite promising features offered by NDN, itis still susceptible to various Denial of Service (DoS) attacks, mainly Interest Flooding Attacks (IFA).Various mitigation solutions exist in the literature; however, legitimate users and their traffic areusuallyaffectedbythesesolutions.Inthispaper,weproposealightweightmechanismcalledMSIDN,tomitigate sophisticated interest flooding-based DoS and Distributed DoS (DDoS) attacks in NDN. MSIDNaims to mitigate attacks at the source of communication without affecting the legitimate users. MSIDNrelies on data producers’ feedback which is used by the routers to employ precise rate-limiting andblock the attackers. Extensive simulations were conducted to evaluate the proposed MSIDN in termsof its robustness during various attack scenarios, dealing with malicious traffic without affecting thelegitimate requests, and mitigating attacks at the source side of the communication.
Original languageEnglish
Pages (from-to)293-306
Number of pages14
JournalFuture Generation Computer Systems
Early online date31 Jan 2020
Publication statusPublished - Jun 2020
Externally publishedYes

Bibliographical note

Publisher Copyright:
© 2020 Elsevier B.V.


  • Denial-of-Service attacks
  • Interest Flooding Attack
  • NDN Security
  • Named Data Networking

ASJC Scopus subject areas

  • Software
  • Hardware and Architecture
  • Computer Networks and Communications


Dive into the research topics of 'MSIDN: Mitigation of Sophisticated Interest flooding-based DDoS attacks in Named Data Networking'. Together they form a unique fingerprint.

Cite this