Multicast authentication in fully adversarial networks

Author

Lysyanskaya, Anna ; Tamassia, Roberto ; Triandopoulos, Nikos

Author_Institution

Dept. of Comput. Sci., Brown Univ., Providence, RI, USA

fYear

2004

fDate

9-12 May 2004

Firstpage

241

Lastpage

253

Abstract

We study a general version of the multicast authentication problem where the underlying network, controlled by an adversary, may drop chosen packets, rearrange the order of the packets in an arbitrary way, and inject new packets into the transmitted stream. Prior work on the problem has focused on less general models, where random, rather than adversarially-selected packets may be dropped and altered, or no additional packets may be injected into the stream. We describe an efficient and scalable authentication scheme that is based on a novel combination of error-correcting codes with standard cryptographic primitives. We prove the security of our scheme and analyze its performance in terms of the computational effort at the sender and receiver and the communication overhead. We also discuss specific design and implementation choices and compare our scheme with previously proposed approaches.

Keywords

cryptography; error correction codes; message authentication; multicast communication; packet switching; telecommunication security; adversarial networks; communication overhead; cryptographic primitives; error-correcting codes; multicast authentication; Authentication; Code standards; Computer science; Cryptography; Data security; Error correction codes; Intelligent networks; Internet; Multicast protocols; Performance analysis;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy, 2004. Proceedings. 2004 IEEE Symposium on

ISSN

1081-6011

Print_ISBN

0-7695-2136-3

Type

conf

DOI

10.1109/SECPRI.2004.1301327

Filename

1301327