A Semantic Firewall for Content-Centric Networking

被引：0

作者：

Goergen, David ^{[1
]}

Cholez, Thibault ^{[1
]}

Francois, Jerome ^{[1
]}

Engel, Thomas ^{[1
]}

机构：

[1] Univ Luxembourg, Interdisciplinary Ctr Secur Reliabil & Trust, Luxembourg, Luxembourg

来源：

2013 IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM 2013) | 2013年

关键词：

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Content-Centric Networking (CCN) is a promising routing paradigm for content dissemination over a future Internet based on named data instead of named hosts. The CCN architecture has aspects that provide more scalability, security, collaborative and pervasive networking. However, several key components that secures the current Internet are still missing in CCN, in particular a firewall able to enforce security policies. We provide a comprehensive study of CCN security requirements from which we design the first CCN-compliant firewall, including syntax and definition of rules. In particular, based on CCN features, our firewall can filter packets according to both their authentication and the semantics of the content name. We also provide a performance evaluation of our prototype.

引用

页码：478 / 484

页数：7

共 13 条

[1] Al-Shaer E.S., 2004, INFOCOM
[2] Avolio F., 1999, The Internet Protocol Journal, V2
[3] Crocker D., 2005, 4234 RFC
[4] Goergen D., 2012, SETOP
[5] On dynamic optimization of packet matching in high-speed firewalls
Hamed, Hazem
El-Atawy, Adel
Al-Shaer, Ehab
[J]. IEEE JOURNAL ON SELECTED AREAS IN COMMUNICATIONS, 2006, 24 (10) : 1817 - 1830
[6] Jacobson V., 2009, P 5 INT C EM NETW EX, P1, DOI [DOI 10.1145/1658939.1658941, 10.1145/1658939.1658941]
[7] Kolb P, 2008, KONVENS 2008 ERGANZU
[8] SecSip: A Stateful Firewall for SIP-based Networks
Lahmadi, Abdelkader
Festor, Olivier
[J]. 2009 IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM 2009) VOLS 1 AND 2, 2009, : 172 - 179
[9] Lauinger T., 2010, THESIS TU DARMSTADT
[10] Liu A. X., 2005, P 2005 INT C DEP SYS

← 1 2 →