A Distributed DoS Detection Scheme for NoC-based MPSoCs

Abstract

The increasing threat of Denial of Service (DoS) attacks targeting Networks-on-Chip (NoC) based Multi-processors System-on-Chip (MPSoCs) imposes unprecedented challenges in terms of communication availability, especially for identifying the source of an attack in the NoC. Previous works show the possibility of executing DoS attacks on NoCs and propose mitigation methods that are deployed in all the NoC routers. However, this protection countermeasures usually impact the communication heavily. In order to achieve a better DoS protection, the point of attack should be identified. Towards this direction, in this paper, we propose a novel distributed DoS detection scheme being able to measure the performance degradation of sensitive flows and to detect the router where the attack enters the sensitive communication path. We perform an exploration regarding the effect of different types of attackers, where experimental work shows the best attack configuration parameters, and that a combination of two latency metrics can be leveraged not only for detecting a DoS attack, but also its interference point.