Do we have the time for IRM? Service denial attacks and SDN-based defences

Ryan Shah, Shishir Nagaraja

Research output: Chapter in Book/Report/Conference proceedingConference contribution book

1 Citation (Scopus)
27 Downloads (Pure)

Abstract

Distributed sensor networks such as IoT deployments generate large quantities of measurement data. Often, the analytics that runs on this data is available as a web service which can be purchased for a fee. A major concern in the analytics ecosystem is ensuring the security of the data. Often, companies offer Information Rights Management (IRM) as a solution to the problem of managing usage and access rights of the data that transits administrative boundaries. IRM enables individuals and corporations to create restricted IoT data, which can have its flow from organisation to individual control - disabling copying, forwarding, and allowing timed expiry. We describe our investigations into this functionality and uncover a weak-spot in the architecture - its dependence upon the accurate global availability of time. We present an amplified denial-of-service attack which attacks time synchronisation and could prevent all the users in an organisation from reading any sort of restricted data until their software has been re-installed and re-configured. We argue that IRM systems built on current technology will be too fragile for businesses to risk widespread use. We also present defences that leverage the capabilities of Software-Defined Networks to apply a simple filter-based approach to detect and isolate attack traffic.

Original languageEnglish
Title of host publicationICDCN 2019 - Proceedings of the 2019 International Conference on Distributed Computing and Networking
Place of PublicationNew York
Pages496-501
Number of pages6
ISBN (Electronic)9781450360944
DOIs
Publication statusPublished - 4 Jan 2019
Event20th International Conference on Distributed Computing and Networking, ICDCN 2019 - Bangalore, India
Duration: 4 Jan 20197 Jan 2019

Conference

Conference20th International Conference on Distributed Computing and Networking, ICDCN 2019
Country/TerritoryIndia
CityBangalore
Period4/01/197/01/19

Keywords

  • security
  • SDN
  • DRM

Fingerprint

Dive into the research topics of 'Do we have the time for IRM? Service denial attacks and SDN-based defences'. Together they form a unique fingerprint.

Cite this