Privacy Attack Modeling and Risk Assessment Method for Name Data Networking

Abstract

Assessment of security threat for Internet has become a major concern because of the advancement and expansion of IT in recent years, and it is equally important for future Internet architectures. Name data networking architecture is designed from scratch and is immune to most of the security attacks that are common in IP-based networks. The newly added features give rise to new security attacks which can compromise user privacy, data confidentiality, and integrity. Formal mathematical modeling is essential for proper assessments and mitigation from the security attacks. Security attack modeling provides insight of network vulnerabilities and helps in identifying the areas, which have to be kept on priority. This paper presents an attack tree-based privacy attack modeling and risk assessment technique for NDN. First attack tree is constructed in a top-down approach to find out possible attacks and threats that compromise user privacy from the attacker’s point of view and then presented risk assessment technique to ascertain degree of threat that an attack imposes on user privacy.