Securing Application-Level Topology Estimation Networks: Facing the Frog-Boiling Attack

Becker, Sheila; Seibert, Jeff; Nita-Rotaru, Cristina; State, Radu

doi:10.1007/978-3-642-23644-0_11

Cited by 4 publications

(2 citation statements)

References 28 publications

(36 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…bandwidth, storage for a tamper-evident log, and computation for public-key cryptography), we do not compare Newton with them. Becker et al [33] propose a method for detecting frog-boiling by using a machine learning approach, where through a training data set the system learns what normal and abnormal data is. In contrast, our approach has no need to train the system and can detect abnormal behavior directly due to the applied physical laws.…”

Section: B Attack Mitigationmentioning

confidence: 99%

See 1 more Smart Citation

Securing Virtual Coordinates by Enforcing Physical Laws

Seibert

Becker

Nita-Rotaru

et al. 2012

2012 IEEE 32nd International Conference on Distributed Computing Systems

Self Cite

View full text Add to dashboard Cite

Abstract-Virtual coordinate systems (VCS) provide accurate estimations of latency between arbitrary hosts on a network, while conducting a small amount of actual measurements and relying on node cooperation. While these systems have good accuracy under benign settings, they suffer a severe decrease of their effectiveness when under attack by compromised nodes acting as insider attackers. Previous defenses mitigate such attacks by using machine learning techniques to differentiate good behavior (learned over time) from bad behavior. However, these defense schemes have been shown to be vulnerable to advanced attacks that make the schemes learn malicious behavior as good behavior.We present Newton, a decentralized VCS that is robust to a wide class of insider attacks. Newton uses an abstraction of a real-life physical system, similar to that of Vivaldi, but in addition uses safety invariants derived from Newton's laws of motion. As a result, Newton does not need to learn good behavior and can tolerate a significantly higher percentage of malicious nodes. We show through simulations and real-world experiments on the PlanetLab testbed that Newton is able to mitigate all known attacks against VCS while providing better accuracy than Vivaldi, even in benign settings.

show abstract

Section: B Attack Mitigationmentioning

confidence: 99%

“…In contrast, our approach has no need to train the system and can detect abnormal behavior directly due to the applied physical laws. Furthermore, while [33] can detect attacks are occuring but not find and discard the updates that are causing it, Newton is able to do both.…”

Section: B Attack Mitigationmentioning

confidence: 99%