Lightweight source authentication and path validation

Lightweight source authentication and path validation

In-network source authentication and path validation are fundamental primitives to construct higher-level security mechanisms such as DDoS mitigation, path compliance, packet attribution, or protection against flow redirection. Unfortunately, currently proposed solutions either fall short of address...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Kim, Tiffany Hyun-Jin, Basescu, Cristina, Jia, Limin, Lee, Soo Bum, Hu, Yih-Chun, Perrig, Adrian
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Authentication
Computer information security
Construction
Lightweight
Mathematical models
Protocol (computers)
Routers
Weight reduction
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In-network source authentication and path validation are fundamental primitives to construct higher-level security mechanisms such as DDoS mitigation, path compliance, packet attribution, or protection against flow redirection. Unfortunately, currently proposed solutions either fall short of addressing important security concerns or require a substantial amount of router overhead. In this paper, we propose lightweight, scalable, and secure protocols for shared key setup, source authentication, and path validation. Our prototype implementation demonstrates the efficiency and scalability of the protocols, especially for software-based implementations.
ISSN:0146-4833
DOI:10.1145/2619239.2626323