Dynamically Differentiated Multipath Security in Fixed Bandwidth Networks

Networks can be secured using a secure quality of service approach in which a sender disperses data along multiple secure paths. In this secure multipath approach, a portion of the data from the sender is transmitted over each path on fixed bandwidth networks, and the receiver assembles the data fragments that arrive. The research presented explores the effects of cloud infrastructure attack scenarios, and gauges the threat levels along each path. Optimal sampling and compression via compressed sensing is employed in order to minimize the possibility of dropped packets and missed attacks. The probability of the presence of specific attack signatures along each network path is determined using statistical learning techniques. Path information assurance levels are derived using these probabilities and encryption strengths are dynamically increased along those paths found to be most vulnerable. As compared to statically employed path encryption schemes, the devised methods in this research significantly increase data throughput on fixed bandwidth networks.