Resilient self-organizing overlay networks for security update delivery

Rapid and widespread dissemination of security updates throughout the Internet will be invaluable for many purposes, including sending early-warning signals, updating certificate revocation lists, distributing new virus signatures, etc. Notifying a large number of machines securely, quickly, and rel...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	IEEE journal on selected areas in communications 2004-01, Vol.22 (1), p.189-202
Hauptverfasser:	Jun Li, Reiher, P.L., Popek, G.J.
Format:	Artikel
Sprache:	eng
Schlagworte:	Broadcasting Costs Countermeasures Distributing Environmental engineering Information security Internet IP networks Large-scale systems Marketing Networks Power system security Prototypes Security Signatures Unicast Velocity measurement
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page	202
container_issue	1
container_start_page	189
container_title	IEEE journal on selected areas in communications
container_volume	22
creator	Jun Li Reiher, P.L. Popek, G.J.
description	Rapid and widespread dissemination of security updates throughout the Internet will be invaluable for many purposes, including sending early-warning signals, updating certificate revocation lists, distributing new virus signatures, etc. Notifying a large number of machines securely, quickly, and reliably is challenging. Such a system must outpace the propagation of threats, handle complexities in a large-scale environment, deal with interruption attacks on dissemination, and also secure itself. Revere addresses these problems by building a large-scale, self-organizing, and resilient overlay network on top of the Internet. We discuss how to secure the dissemination procedure and the overlay network, considering possible attacks and countermeasures. We present experimental measurements of a prototype implementation of Revere gathered using a large-scale-oriented approach. These measurements suggest that Revere can deliver security updates at the required scale, speed and resiliency for a reasonable cost.
doi_str_mv	10.1109/JSAC.2003.818808
format	Article
fullrecord	<record><control><sourceid>proquest_RIE</sourceid><recordid>TN_cdi_proquest_journals_883890381</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>1258125</ieee_id><sourcerecordid>28587151</sourcerecordid><originalsourceid>FETCH-LOGICAL-c351t-e374523bdf1c92eeebd85b40d25457a4bfb7e1e28a42d25d240d15fcd09505983</originalsourceid><addsrcrecordid>eNp90U1LxDAQBuAgCq6rd8FL8aCnrpOk2U6Py6KrIgh-nEM_pkvWbrsmrVJ_vSkVBA8eQiB5ZmDmZeyUw4xzSK7unxfLmQCQM-SIgHtswpXCEABwn00gljLEmM8P2ZFzGwAeRSgmbPVEzlSG6jZwVJVhY9dpbb5MvQ6aD7JV2gc1tZ-NfXNB2ViP8s6atg-6XZG2FBRUGe_6Y3ZQppWjk597yl5vrl-Wt-HD4-puuXgIc6l4G5KMIyVkVpQ8TwQRZQWqLIJCqEjFaZSVWUycBKaR8G-F8F9clXkBiQKVoJyyy7HvzjbvHblWb43LqarSmprOaUzmQs4TEXl58a8UqPw-FPfw_A_cNJ2t_RQaUWICEgcEI8pt45ylUu-s2aa21xz0EIAeAtBDAHoMwJecjSXGz_nLhUJ_5De06YGe</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>883890381</pqid></control><display><type>article</type><title>Resilient self-organizing overlay networks for security update delivery</title><source>IEEE Electronic Library (IEL)</source><creator>Jun Li ; Reiher, P.L. ; Popek, G.J.</creator><creatorcontrib>Jun Li ; Reiher, P.L. ; Popek, G.J.</creatorcontrib><description>Rapid and widespread dissemination of security updates throughout the Internet will be invaluable for many purposes, including sending early-warning signals, updating certificate revocation lists, distributing new virus signatures, etc. Notifying a large number of machines securely, quickly, and reliably is challenging. Such a system must outpace the propagation of threats, handle complexities in a large-scale environment, deal with interruption attacks on dissemination, and also secure itself. Revere addresses these problems by building a large-scale, self-organizing, and resilient overlay network on top of the Internet. We discuss how to secure the dissemination procedure and the overlay network, considering possible attacks and countermeasures. We present experimental measurements of a prototype implementation of Revere gathered using a large-scale-oriented approach. These measurements suggest that Revere can deliver security updates at the required scale, speed and resiliency for a reasonable cost.</description><identifier>ISSN: 0733-8716</identifier><identifier>EISSN: 1558-0008</identifier><identifier>DOI: 10.1109/JSAC.2003.818808</identifier><identifier>CODEN: ISACEM</identifier><language>eng</language><publisher>New York: IEEE</publisher><subject>Broadcasting ; Costs ; Countermeasures ; Distributing ; Environmental engineering ; Information security ; Internet ; IP networks ; Large-scale systems ; Marketing ; Networks ; Power system security ; Prototypes ; Security ; Signatures ; Unicast ; Velocity measurement</subject><ispartof>IEEE journal on selected areas in communications, 2004-01, Vol.22 (1), p.189-202</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2004</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c351t-e374523bdf1c92eeebd85b40d25457a4bfb7e1e28a42d25d240d15fcd09505983</citedby><cites>FETCH-LOGICAL-c351t-e374523bdf1c92eeebd85b40d25457a4bfb7e1e28a42d25d240d15fcd09505983</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/1258125$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>315,781,785,797,27929,27930,54763</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/1258125$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Jun Li</creatorcontrib><creatorcontrib>Reiher, P.L.</creatorcontrib><creatorcontrib>Popek, G.J.</creatorcontrib><title>Resilient self-organizing overlay networks for security update delivery</title><title>IEEE journal on selected areas in communications</title><addtitle>J-SAC</addtitle><description>Rapid and widespread dissemination of security updates throughout the Internet will be invaluable for many purposes, including sending early-warning signals, updating certificate revocation lists, distributing new virus signatures, etc. Notifying a large number of machines securely, quickly, and reliably is challenging. Such a system must outpace the propagation of threats, handle complexities in a large-scale environment, deal with interruption attacks on dissemination, and also secure itself. Revere addresses these problems by building a large-scale, self-organizing, and resilient overlay network on top of the Internet. We discuss how to secure the dissemination procedure and the overlay network, considering possible attacks and countermeasures. We present experimental measurements of a prototype implementation of Revere gathered using a large-scale-oriented approach. These measurements suggest that Revere can deliver security updates at the required scale, speed and resiliency for a reasonable cost.</description><subject>Broadcasting</subject><subject>Costs</subject><subject>Countermeasures</subject><subject>Distributing</subject><subject>Environmental engineering</subject><subject>Information security</subject><subject>Internet</subject><subject>IP networks</subject><subject>Large-scale systems</subject><subject>Marketing</subject><subject>Networks</subject><subject>Power system security</subject><subject>Prototypes</subject><subject>Security</subject><subject>Signatures</subject><subject>Unicast</subject><subject>Velocity measurement</subject><issn>0733-8716</issn><issn>1558-0008</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2004</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNp90U1LxDAQBuAgCq6rd8FL8aCnrpOk2U6Py6KrIgh-nEM_pkvWbrsmrVJ_vSkVBA8eQiB5ZmDmZeyUw4xzSK7unxfLmQCQM-SIgHtswpXCEABwn00gljLEmM8P2ZFzGwAeRSgmbPVEzlSG6jZwVJVhY9dpbb5MvQ6aD7JV2gc1tZ-NfXNB2ViP8s6atg-6XZG2FBRUGe_6Y3ZQppWjk597yl5vrl-Wt-HD4-puuXgIc6l4G5KMIyVkVpQ8TwQRZQWqLIJCqEjFaZSVWUycBKaR8G-F8F9clXkBiQKVoJyyy7HvzjbvHblWb43LqarSmprOaUzmQs4TEXl58a8UqPw-FPfw_A_cNJ2t_RQaUWICEgcEI8pt45ylUu-s2aa21xz0EIAeAtBDAHoMwJecjSXGz_nLhUJ_5De06YGe</recordid><startdate>200401</startdate><enddate>200401</enddate><creator>Jun Li</creator><creator>Reiher, P.L.</creator><creator>Popek, G.J.</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SP</scope><scope>8FD</scope><scope>L7M</scope><scope>F28</scope><scope>FR3</scope></search><sort><creationdate>200401</creationdate><title>Resilient self-organizing overlay networks for security update delivery</title><author>Jun Li ; Reiher, P.L. ; Popek, G.J.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c351t-e374523bdf1c92eeebd85b40d25457a4bfb7e1e28a42d25d240d15fcd09505983</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2004</creationdate><topic>Broadcasting</topic><topic>Costs</topic><topic>Countermeasures</topic><topic>Distributing</topic><topic>Environmental engineering</topic><topic>Information security</topic><topic>Internet</topic><topic>IP networks</topic><topic>Large-scale systems</topic><topic>Marketing</topic><topic>Networks</topic><topic>Power system security</topic><topic>Prototypes</topic><topic>Security</topic><topic>Signatures</topic><topic>Unicast</topic><topic>Velocity measurement</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Jun Li</creatorcontrib><creatorcontrib>Reiher, P.L.</creatorcontrib><creatorcontrib>Popek, G.J.</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Electronics & Communications Abstracts</collection><collection>Technology Research Database</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>ANTE: Abstracts in New Technology & Engineering</collection><collection>Engineering Research Database</collection><jtitle>IEEE journal on selected areas in communications</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Jun Li</au><au>Reiher, P.L.</au><au>Popek, G.J.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Resilient self-organizing overlay networks for security update delivery</atitle><jtitle>IEEE journal on selected areas in communications</jtitle><stitle>J-SAC</stitle><date>2004-01</date><risdate>2004</risdate><volume>22</volume><issue>1</issue><spage>189</spage><epage>202</epage><pages>189-202</pages><issn>0733-8716</issn><eissn>1558-0008</eissn><coden>ISACEM</coden><abstract>Rapid and widespread dissemination of security updates throughout the Internet will be invaluable for many purposes, including sending early-warning signals, updating certificate revocation lists, distributing new virus signatures, etc. Notifying a large number of machines securely, quickly, and reliably is challenging. Such a system must outpace the propagation of threats, handle complexities in a large-scale environment, deal with interruption attacks on dissemination, and also secure itself. Revere addresses these problems by building a large-scale, self-organizing, and resilient overlay network on top of the Internet. We discuss how to secure the dissemination procedure and the overlay network, considering possible attacks and countermeasures. We present experimental measurements of a prototype implementation of Revere gathered using a large-scale-oriented approach. These measurements suggest that Revere can deliver security updates at the required scale, speed and resiliency for a reasonable cost.</abstract><cop>New York</cop><pub>IEEE</pub><doi>10.1109/JSAC.2003.818808</doi><tpages>14</tpages></addata></record>
fulltext	fulltext_linktorsrc
identifier	ISSN: 0733-8716
ispartof	IEEE journal on selected areas in communications, 2004-01, Vol.22 (1), p.189-202
issn	0733-8716 1558-0008
language	eng
recordid	cdi_proquest_journals_883890381
source	IEEE Electronic Library (IEL)
subjects	Broadcasting Costs Countermeasures Distributing Environmental engineering Information security Internet IP networks Large-scale systems Marketing Networks Power system security Prototypes Security Signatures Unicast Velocity measurement
title	Resilient self-organizing overlay networks for security update delivery
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-14T08%3A17%3A51IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Resilient%20self-organizing%20overlay%20networks%20for%20security%20update%20delivery&rft.jtitle=IEEE%20journal%20on%20selected%20areas%20in%20communications&rft.au=Jun%20Li&rft.date=2004-01&rft.volume=22&rft.issue=1&rft.spage=189&rft.epage=202&rft.pages=189-202&rft.issn=0733-8716&rft.eissn=1558-0008&rft.coden=ISACEM&rft_id=info:doi/10.1109/JSAC.2003.818808&rft_dat=%3Cproquest_RIE%3E28587151%3C/proquest_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=883890381&rft_id=info:pmid/&rft_ieee_id=1258125&rfr_iscdi=true