Title :
A semantic firewall for Content-Centric Networking
Author :
Goergen, David ; Cholez, Thibault ; Francois, Jerome ; Engel, Thomas
Author_Institution :
Interdiscipl. Centre for Security, Reliability & Trust, Univ. of Luxembourg, Luxembourg, Luxembourg
Abstract :
Content-Centric Networking (CCN) is a promising routing paradigm for content dissemination over a future Internet based on named data instead of named hosts. The CCN architecture has aspects that provide more scalability, security, collaborative and pervasive networking. However, several key components that secures the current Internet are still missing in CCN, in particular a firewall able to enforce security policies. We provide a comprehensive study of CCN security requirements from which we design the first CCN-compliant firewall, including syntax and definition of rules. In particular, based on CCN features, our firewall can filter packets according to both their authentication and the semantics of the content name. We also provide a performance evaluation of our prototype.
Keywords :
computer architecture; computer network performance evaluation; computer network security; firewalls; internetworking; telecommunication network routing; CCN architecture; CCN security requirements; CCN-compliant firewall; authentication; collaborative-pervasive networking; content dissemination; content name semantics; content-centric networking; named data; packet filtering; performance evaluation; routing paradigm; rule definition; scalability; security policies; semantic firewall; syntax; Filtering; IP networks; Internet; Security; Semantics; Standards; Syntactics;
Conference_Titel :
Integrated Network Management (IM 2013), 2013 IFIP/IEEE International Symposium on
Conference_Location :
Ghent
Print_ISBN :
978-1-4673-5229-1
