A secure PLAN (extended version)

Author

Hicks, Michael ; Keromytis, Angelos D. ; Smith, Jonathan M.

Author_Institution

Dept. of Comput. Sci., Cornell Univ., Ithaca, NY, USA

fYear

2002

fDate

6/24/1905 12:00:00 AM

Firstpage

224

Lastpage

237

Abstract

Active networks promise greater flexibility than current networks, but threaten safety and security by virtue of their programmability. We describe the design and implementation of a security architecture for the active network PLANet (Hicks et al., 1999). Security is obtained with a two-level architecture that combines a functionally restricted packet language, PLAN (Hicks et al., 1998), with an environment of general-purpose service routines governed by trust management (Blaze et al., 1996). In particular, we employ a technique which expands or contracts a packet´s service environment based on its level of privilege, termed namespace-based security. As an application of our security architecture, we present the design and implementation of an active-network firewall. We find that the addition of the firewall imposes an approximately 34% latency overhead and as little as a 6.7% space overhead to incoming packets

Keywords

authorisation; internetworking; telecommunication security; PLAN; PLANet; active internetwork; active networks; active-network firewall; functionally restricted packet language; general-purpose service routines; latency overhead; namespace-based security; programmability; safety; security architecture; trust management; two-level architecture; Authentication; Authorization; Cities and towns; Computer networks; Computer science; Cryptography; IP networks; Information security; Planets; Web and internet services;

fLanguage

English

Publisher

ieee

Conference_Titel

DARPA Active NEtworks Conference and Exposition, 2002. Proceedings

Conference_Location

San Francisco, CA

Print_ISBN

0-7695-1564-9

Type

conf

DOI

10.1109/DANCE.2002.1003496

Filename

1003496