Prophylactic, treatment and containment techniques for ensuring active network security

Author

Murphy, Sandra ; Hayatnagarkar, Abhijit ; Krishnaswamy, Suresh ; Morrison, Wayne ; Watson, Robert

Volume

1

fYear

2003

fDate

22-24 April 2003

Firstpage

97

Abstract

The flexibility and power achieved by using active networks come with their own risks - any fault in the active code or the security infrastructure now represents a fault in the network as a whole. Secure containment of active code is necessary in order to ameliorate this risk. This paper describes innovative approaches for recovering from faults in the active code as well as faults in the security infrastructure of an active network. Diverse authentication techniques that provide fail-over when some component of the security infrastructure is unavailable, and compensatory authentication techniques, both prophylactic and treatment-based, are discussed. The paper concludes by outlining an active code revocation architecture that facilitates secure containment of faulty active code within the active network.

Keywords

computer networks; cryptography; fault tolerant computing; message authentication; risk management; system recovery; telecommunication security; active code revocation architecture; active network security; authentication techniques; compensatory authentication techniques; fail-over; fault recovery; prophylactic techniques; risk; secure containment; Access protocols; Authentication; Communication system security; Contracts; Cryptographic protocols; Cryptography; Digital signatures; Electrical capacitance tomography; Network servers; Read only memory;

fLanguage

English

Publisher

ieee

Conference_Titel

DARPA Information Survivability Conference and Exposition, 2003. Proceedings

Print_ISBN

0-7695-1897-4

Type

conf

DOI

10.1109/DISCEX.2003.1194876

Filename

1194876