NAC: Name-Based Access Control in Named Data Networking

被引:19
作者
Zhang, Zhiyi [1 ]
Yu, Yingdi [1 ]
Afanasyev, Alexander [2 ]
Burke, Jeff [1 ]
Zhang, Lixia [1 ]
机构
[1] Univ Calif Los Angeles, Los Angeles, CA 90024 USA
[2] Florida Int Univ, Miami, FL 33199 USA
来源
PROCEEDINGS OF THE 4TH ACM CONFERENCE ON INFORMATION-CENTRIC NETWORKING (ICN 2017) | 2017年
基金
美国国家科学基金会;
关键词
NDN; access control; ABE;
D O I
10.1145/3125719.3132102
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
As a proposed Internet architecture, Named Data Networking must provide effective security support: data authenticity, confidentiality, and availability. This poster focuses on supporting data confidentiality via encryption. The main challenge is to provide an easy-to-use key management mechanism that ensures only authorized parties are given the access to protected data. We describe the design of name-based access control (NAC) which provides automated key management by developing systematic naming conventions for both data and cryptographic keys. We also discuss an enhanced version of NAC that leverages attribute-based encryption mechanisms (NAC-ABE) to improve the flexibility of data access control and reduce communication, storage, and processing overheads.
引用
收藏
页码:186 / 187
页数:2
相关论文
共 7 条
[1]  
[Anonymous], P IEEE S SEC PRIV
[2]  
[Anonymous], 2014, ACM SIGCOMM COMPUTER
[3]  
Ion M., 2013, P 3 ACM SIGCOMM WORK
[4]   Fuzzy identity-based encryption [J].
Sahai, A ;
Waters, B .
ADVANCES IN CRYPTOLOGY - EUROCRYPT 2005,PROCEEDINGS, 2005, 3494 :457-473
[5]  
Thompson Jeff, 2017, NDN CCL API
[6]  
Tu Yukai, 2017, NAC ABE CODEBASE
[7]  
Yu Y., 2016, Technical Report NDN-0034
1