Network Security for Client-Server Architecture Using Wiretap Codes

Author

Bloch, Matthieu ; Narasimha, Rajesh ; McLaughlin, Steven W.

Author_Institution

Dept. of Electr. Eng., Notre Dame Univ., Notre Dame, IN

Volume

3

Issue

3

fYear

2008

Firstpage

404

Lastpage

413

Abstract

We propose a method that provides information-theoretic security for client-server communications. By introducing an appropriate encoding scheme, we show how a client-server architecture under active attacks can be modeled as a binary-erasure wiretap channel. The secrecy capacity of the equivalent wiretap channel is then used as a metric to optimize the architecture and limit the impact of the attacks. Upper and lower bounds of the optimal secrecy capacity are derived and analyzed. While still mostly of theoretical interest, our analysis sheds some light on the practical design of resistant and secure client-server architectures.

Keywords

client-server systems; codes; telecommunication security; binary-erasure wiretap channel; client-server architecture; client-server communications; encoding scheme; information-theoretic security; network security; optimal secrecy capacity; wiretap codes; Authentication; Bandwidth; Channel capacity; Communication system traffic control; Computer crime; Gain control; Information security; Network servers; Resists; Telecommunication traffic; Client-server architecture; network security; secrecy capacity; wiretap channel;

fLanguage

English

Journal_Title

Information Forensics and Security, IEEE Transactions on

Publisher

ieee

ISSN

1556-6013

Type

jour

DOI

10.1109/TIFS.2008.927688

Filename

4598818