research-article

Free access

Decentralized Authorization and Privacy-Enhanced Routing for Information-Centric Networks

Authors:

Mariana Raykova,

Hasnain Lakhani,

Ashish GehaniAuthors Info & Claims

ACSAC '15: Proceedings of the 31st Annual Computer Security Applications Conference

Pages 31 - 40

https://doi.org/10.1145/2818000.2818001

Published: 07 December 2015 Publication History

Abstract

As information-centric networks are deployed in increasingly diverse settings, there is a growing need to protect the privacy of participants. We describe the design, implementation, and evaluation of a security framework that achieves this. It ensures the integrity and confidentiality of published content, the associated descriptive metadata, and the interests of subscribers.

Publishers can scope access to the content, as well as which nodes in the network can broker access to it. Subscribers can limit which nodes can see their interests. Scopes are defined as policies over attributes of the individual nodes. The system transparently realizes the policies with suitable cryptographic primitives. It supports deployment in heterogeneous mobile ad hoc environments where trust may derive from multiple independent sources. Further, no external public key infrastructure is assumed. We also report on the overhead that the security adds in actual deployments on Android devices.

References

[1]

Bengt Ahlgren, Christian Dannewitz, Claudio Imbrenda, Dirk Kutscher, and Borje Ohlman, A survey of information-centric networking, IEEE Communications Magazine, Vol. 50(7), 2012.

[2]

Jeff Ahrenholz, Comparison of CORE Network Emulation Platforms, 29th IEEE Military Communications Conference, 2010.

[3]

Apple AirDrop, https://www.apple.com/ios/features/#airdrop

[4]

Somaya Arianfar, Teemu Koponen, Barath Raghavan, and Scott Shenker, On preserving privacy in content-oriented networks, ACM SIGCOMM Workshop on Information-Centric Networking, 2011.

Digital Library

[5]

Android Beam, http://developer.android.com/guide/topics/connectivity/nfc/

[6]

Mihir Bellare, Ran Canetti, and Hugo Krawczyk, Keying hash functions for message authentication, 16th Annual International Cryptology Conference on Advances in Cryptology, 1996.

Digital Library

[7]

John Bethencourt, Amit Sahai, and Brent Waters, Ciphertext-policy attribute-based encryption, 28th IEEE Symposium on Security and Privacy, 2006.

Digital Library

[8]

Dan Boneh, Giovanni Di Crescenzo, Rafail Ostrovsky, and Giuseppe Persiano, Public key encryption with keyword search, 23rd International Conference on the Theory and Applications of Cryptographic Techniques, Springer, 2004.

[9]

Dan Boneh, Amit Sahai, and Brent Waters, Functional encryption: Definitions and challenges, 8th Theory of Cryptography Conference, Springer, 2011.

Digital Library

[10]

DARPA CBMEN, http://www.darpa.mil/NewsEvents/Releases/2013/08/21.aspx

[11]

PARC CCN, https://www.parc.com/services/focus-area/content-centric-networking/

[12]

David Cheriton and Mark Gritter, TRIAD: A new next-generation Internet architecture, 2000.

[13]

Reza Curtmola, Juan Garay, Seny Kamara, and Rafail Ostrovsky, Searchable symmetric encryption: Improved definitions and efficient constructions, 13th ACM Conference on Computer and Communications Security, 2006.

Digital Library

[14]

Seyed Kaveh Fayazbakhsh, Yin Lin, Amin Tootoonchian, Ali Ghodsi, Teemu Koponen, Bruce Maggs, K.C. Ng, Vyas Sekar, and Scott Shenker, Less pain, most of the gain: incrementally deployable ICN, ACM SIGCOMM Conference, 2013.

Digital Library

[15]

Nikos Fotiou, Giannis Marias, and George Polyzos, Access control enforcement delegation for information-centric networking architectures, 2nd ACM Workshop on Information-Centric Networking, 2012.

Digital Library

[16]

Sanjam Garg, Craig Gentry, Shai Halevi, Mariana Raykova, Amit Sahai, and Brent Waters, Candidate indistinguishability obfuscation and functional encryption for all circuits, 54th IEEE Symposium on Foundations of Computer Science, 2013.

Digital Library

[17]

Ali Ghodsi, Teemu Koponen, Jarno Rajahalme, Pasi Sarolahti, and Scott Shenker, Naming in content-oriented architectures, 1st ACM Workshop on Information-Centric Networking, 2011.

Digital Library

[18]

Allison Lewko and Brent Waters, Decentralizing attribute-based encryption, 30th International Conference on the Theory and Applications of Cryptographic Techniques, Springer, 2011.

Digital Library

[19]

Van Jacobson, Diana Smetters, James Thornton, Michael Plass, Nicholas Briggs, and Rebecca Braynard, Networking named content, 5th International Conference on Emerging Networking Experiments and Technologies, 2009.

Digital Library

[20]

John Kubiatowicz, David Bindel, Yan Chen, Steven Czerwinski, Patrick Eaton, Dennis Geels, Ramakrishna Gummadi, Sean Rhea, Hakim Weatherspoon, Westley Weimer, Chris Wells, and Ben Zhao, OceanStore: An architecture for global-scale persistent storage, 9th International Conference on Architectural Support for Programming Languages and Operating Systems, 2000.

Digital Library

[21]

Erik Nordstrom, Christian Rohner, and Per Gunningberg, Haggle: Opportunistic mobile content sharing using search, Computer Communications, Vol. 48, Elsevier, 2014.

[22]

Ronald Rivest, Adi Shamir, Leonard Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, Vol. 21(2), 1978.

Digital Library

[23]

Amit Sahai and Brent Waters, Fuzzy identity-based encryption, 24th International Conference on the Theory and Applications of Cryptographic Techniques, 2005.

Digital Library

[24]

Transport Layer Security, http://tools.ietf.org/html/rfc5246

[25]

Samuel Wood, James Mathewson, Joshua Joy, Mark-Oliver Stehr, Minyoung Kim, Ashish Gehani, Mario Gerla, Hamid Sadjadpour, and J.J. Garcia-Luna-Aceves, ICEMAN: A system for efficient, robust and secure situational awareness at the network edge, 32nd IEEE Military Communications Conference, 2013.

[26]

Samuel Wood, James Mathewson, Joshua Joy, Mark-Oliver Stehr, Minyoung Kim, Ashish Gehani, Mario Gerla, Hamid Sadjadpour, and J.J. Garcia-Luna-Aceves, ICEMAN: A practical architecture for situational awareness at the network edge, Logic, Rewriting, and Concurrency, Lecture Notes in Computer Science, Vol. 9200, Springer, 2015.

[27]

George Xylomenos, Christopher Ververidis, Vasilios Siris, Nikos Fotiou, Christos Tsilopoulos, Xenofon Vasilakos, Konstantinos Katsaros, and George Polyzos, A survey of information-centric networking research, IEEE Communications Surveys and Tutorials, Vol. 16(2), 2014.

Cited By

Edris EAiash MLoo J(2021)Security in Network Services Delivery for 5G Enabled D2D Communications: Challenges and SolutionsChallenges in the IoT and Smart Environments10.1007/978-3-030-87166-6_1(1-27)Online publication date: 27-Nov-2021
https://doi.org/10.1007/978-3-030-87166-6_1
Ramani STourani RTorres GMisra SAfanasyev A(2019)NDN-ABSProceedings of the 6th ACM Conference on Information-Centric Networking10.1145/3357150.3357393(123-133)Online publication date: 24-Sep-2019
https://dl.acm.org/doi/10.1145/3357150.3357393
Labbi MKannouf NChahid YBenabdellah MAzizi A(2019)Blockchain-Based PKI for Content-Centric NetworkingInnovations in Smart Cities Applications Edition 210.1007/978-3-030-11196-0_54(656-667)Online publication date: 7-Feb-2019
https://doi.org/10.1007/978-3-030-11196-0_54
Show More Cited By

Recommendations

An Enhanced AODV Routing Protocol for Vehicular Adhoc Networks
BDAW '16: Proceedings of the International Conference on Big Data and Advanced Wireless Technologies

The key difference of Vehicular Ad- hoc Network (VANET) and Mobile Ad-hoc Network (MANET) is the exceptional mobility pattern and quick variability variable of network topology. The existing MANET routing protocols are inadequate for the VANET. One good ...
Information-centric mobile ad hoc networks and content routing

As the future Internet architecture, information centric networking(ICN) can also offer superior architectural support for mobile ad hoc networking. Therefore, information-centric mobile ad hoc networks (ICMANET), a new cross-cutting research area, is ...
EZRP: an enhanced zone-based routing protocol for ad-hoc networks: Research Articles
Performance Analysis and Enhancements of Wireless Networks

In mobile ad-hoc networks (MANETs), the nodes intercommunicate through single-hop and multi-hop paths in a peer-to-peer fashion. Intermediate nodes between two pairs of communication nodes act as routers. Thus, the nodes operate both as hosts and ...

Comments

Information & Contributors

Information

Published In

cover image ACM Other conferences

ACSAC '15: Proceedings of the 31st Annual Computer Security Applications Conference

December 2015

489 pages

ISBN:9781450336826

DOI:10.1145/2818000

Copyright © 2015 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

In-Cooperation

ACSA: Applied Computing Security Assoc

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 07 December 2015

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Research-article
Research
Refereed limited

Funding Sources

National Science Foundation

Conference

ACSAC 2015

ACSAC 2015: 2015 Annual Computer Security Applications Conference

December 7 - 11, 2015

CA, Los Angeles, USA

Acceptance Rates

Overall Acceptance Rate 104 of 497 submissions, 21%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
452
Total Downloads

Downloads (Last 12 months)59
Downloads (Last 6 weeks)2

Reflects downloads up to 03 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Edris EAiash MLoo J(2021)Security in Network Services Delivery for 5G Enabled D2D Communications: Challenges and SolutionsChallenges in the IoT and Smart Environments10.1007/978-3-030-87166-6_1(1-27)Online publication date: 27-Nov-2021
https://doi.org/10.1007/978-3-030-87166-6_1
Ramani STourani RTorres GMisra SAfanasyev A(2019)NDN-ABSProceedings of the 6th ACM Conference on Information-Centric Networking10.1145/3357150.3357393(123-133)Online publication date: 24-Sep-2019
https://dl.acm.org/doi/10.1145/3357150.3357393
Labbi MKannouf NChahid YBenabdellah MAzizi A(2019)Blockchain-Based PKI for Content-Centric NetworkingInnovations in Smart Cities Applications Edition 210.1007/978-3-030-11196-0_54(656-667)Online publication date: 7-Feb-2019
https://doi.org/10.1007/978-3-030-11196-0_54
Tourani RStubbs RMisra S(2018)TACTIC: Tag-Based Access ConTrol Framework for the Information-Centric Wireless Edge Networks2018 IEEE 38th International Conference on Distributed Computing Systems (ICDCS)10.1109/ICDCS.2018.00052(456-466)Online publication date: Jul-2018
https://doi.org/10.1109/ICDCS.2018.00052
Tourani RMisra SMick TPanwar G(2018)Security, Privacy, and Access Control in Information-Centric Networking: A SurveyIEEE Communications Surveys & Tutorials10.1109/COMST.2017.274950820:1(566-600)Online publication date: Sep-2019
https://doi.org/10.1109/COMST.2017.2749508
Ngai EOhlman BTsudik GUzun EWählisch MWood C(2017)Can We Make a Cake and Eat it Too? A Discussion of ICN Security and PrivacyACM SIGCOMM Computer Communication Review10.1145/3041027.304103447:1(49-54)Online publication date: 17-Jan-2017
https://dl.acm.org/doi/10.1145/3041027.3041034

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Table of Contents