Distributed access control for information-centric networking architectures using verifiable credentials

Distributed access control for information-centric networking architectures using verifiable credentials

Information-Centric Networking (ICN) is an emerging paradigm that allows users to retrieve content items securely, independently of their location. Therefore, an item may be stored in a location outside the administrative realm of its owner (e.g., cache, CDN node). In this paper, we propose a soluti...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:International journal of information security 2023-04, Vol.22 (2), p.467-478
Hauptverfasser: Alzahrani, Bander, Fotiou, Nikos, Albeshri, Aiiad, Almuhaimeed, Abdullah, Alsubhi, Khalid
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Coding and Information Theory
Communications Engineering
Computer Communication Networks
Computer Science
Consumers
Cryptology
Digital signatures
Management of Computing and Information Systems
Metadata
Networks
Operating Systems
Regular Contribution
Software
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Information-Centric Networking (ICN) is an emerging paradigm that allows users to retrieve content items securely, independently of their location. Therefore, an item may be stored in a location outside the administrative realm of its owner (e.g., cache, CDN node). In this paper, we propose a solution that allows these 3rd party storage nodes to verify that a user is authorized to access a a particular content item. We consider an SDN-based ICN deployment and we leverage Verifiable Credentials to build chains of trust, as well as to express users’ capabilities. With our solution, users can prove authorization using a single message that can be integrated into a content request. Additionally, verifying entities do not have to store any secret. Our solutions support delegation, and it is lightweight.
ISSN:1615-5262
1615-5270
DOI:10.1007/s10207-022-00649-9