Security Design for an Inter-Domain Publish/Subscribe Architecture
Identifieur interne : 000B24 ( Main/Exploration ); précédent : 000B23; suivant : 000B25Security Design for an Inter-Domain Publish/Subscribe Architecture
Auteurs : Kari Visala [Finlande] ; Dmitrij Lagutin [Finlande] ; Sasu Tarkoma [Finlande]Source :
- Lecture Notes in Computer Science [ 0302-9743 ] ; 2011.
Abstract
Abstract: Several new architectures have been recently proposed to replace the Internet Protocol Suite with a data-centric or publish/subscribe (pub/sub) network layer waist for the Internet. The clean-slate design makes it possible to take into account issues in the current Internet, such as unwanted traffic, from the start. If these new proposals are ever deployed as part of the public Internet as an essential building block of the infrastructure, they must be able to operate in a hostile environment, where a large number of users are assumed to collude against the network and other users. In this paper we present a security design through the network stack for a data-centric pub/sub architecture that achieves availability, information integrity, and allows application-specific security policies while remaining scalable. We analyse the solution and examine the minimal trust assumptions between the stakeholders in the system to guarantee the security properties advertised.
Url:
DOI: 10.1007/978-3-642-20898-0_12
Affiliations:
Links toward previous steps (curation, corpus...)
- to stream Istex, to step Corpus: 000C40
- to stream Istex, to step Curation: 000C38
- to stream Istex, to step Checkpoint: 000687
- to stream Main, to step Merge: 000B26
- to stream Main, to step Curation: 000B24
Le document en format XML
<record><TEI wicri:istexFullTextTei="biblStruct"><teiHeader><fileDesc><titleStmt><title xml:lang="en">Security Design for an Inter-Domain Publish/Subscribe Architecture</title><author><name sortKey="Visala, Kari" sort="Visala, Kari" uniqKey="Visala K" first="Kari" last="Visala">Kari Visala</name></author><author><name sortKey="Lagutin, Dmitrij" sort="Lagutin, Dmitrij" uniqKey="Lagutin D" first="Dmitrij" last="Lagutin">Dmitrij Lagutin</name></author><author><name sortKey="Tarkoma, Sasu" sort="Tarkoma, Sasu" uniqKey="Tarkoma S" first="Sasu" last="Tarkoma">Sasu Tarkoma</name></author></titleStmt><publicationStmt><idno type="wicri:source">ISTEX</idno><idno type="RBID">ISTEX:5A93CD8564787217FA175F4D821E3039BA1B3964</idno><date when="2011" year="2011">2011</date><idno type="doi">10.1007/978-3-642-20898-0_12</idno><idno type="url">https://api.istex.fr/document/5A93CD8564787217FA175F4D821E3039BA1B3964/fulltext/pdf</idno><idno type="wicri:Area/Istex/Corpus">000C40</idno><idno type="wicri:Area/Istex/Curation">000C38</idno><idno type="wicri:Area/Istex/Checkpoint">000687</idno><idno type="wicri:doubleKey">0302-9743:2011:Visala K:security:design:for</idno><idno type="wicri:Area/Main/Merge">000B26</idno><idno type="wicri:Area/Main/Curation">000B24</idno><idno type="wicri:Area/Main/Exploration">000B24</idno></publicationStmt><sourceDesc><biblStruct><analytic><title level="a" type="main" xml:lang="en">Security Design for an Inter-Domain Publish/Subscribe Architecture</title><author><name sortKey="Visala, Kari" sort="Visala, Kari" uniqKey="Visala K" first="Kari" last="Visala">Kari Visala</name><affiliation wicri:level="1"><country xml:lang="fr">Finlande</country><wicri:regionArea>Helsinki Institute for Information Technology HIIT / Aalto University School of Science and Technology, Espoo</wicri:regionArea><wicri:noRegion>Espoo</wicri:noRegion></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Finlande</country></affiliation></author><author><name sortKey="Lagutin, Dmitrij" sort="Lagutin, Dmitrij" uniqKey="Lagutin D" first="Dmitrij" last="Lagutin">Dmitrij Lagutin</name><affiliation wicri:level="1"><country xml:lang="fr">Finlande</country><wicri:regionArea>Helsinki Institute for Information Technology HIIT / Aalto University School of Science and Technology, Espoo</wicri:regionArea><wicri:noRegion>Espoo</wicri:noRegion></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Finlande</country></affiliation></author><author><name sortKey="Tarkoma, Sasu" sort="Tarkoma, Sasu" uniqKey="Tarkoma S" first="Sasu" last="Tarkoma">Sasu Tarkoma</name><affiliation wicri:level="4"><country xml:lang="fr">Finlande</country><wicri:regionArea>Department of Computer Science, University of Helsinki, Helsinki</wicri:regionArea><orgName type="university">Université d'Helsinki</orgName><placeName><settlement type="city">Helsinki</settlement><region type="région" nuts="2">Uusimaa</region></placeName></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Finlande</country></affiliation></author></analytic><monogr></monogr><series><title level="s">Lecture Notes in Computer Science</title><imprint><date>2011</date></imprint><idno type="ISSN">0302-9743</idno><idno type="eISSN">1611-3349</idno><idno type="ISSN">0302-9743</idno></series><idno type="istex">5A93CD8564787217FA175F4D821E3039BA1B3964</idno><idno type="DOI">10.1007/978-3-642-20898-0_12</idno><idno type="ChapterID">12</idno><idno type="ChapterID">Chap12</idno></biblStruct></sourceDesc><seriesStmt><idno type="ISSN">0302-9743</idno></seriesStmt></fileDesc><profileDesc><textClass></textClass><langUsage><language ident="en">en</language></langUsage></profileDesc></teiHeader><front><div type="abstract" xml:lang="en">Abstract: Several new architectures have been recently proposed to replace the Internet Protocol Suite with a data-centric or publish/subscribe (pub/sub) network layer waist for the Internet. The clean-slate design makes it possible to take into account issues in the current Internet, such as unwanted traffic, from the start. If these new proposals are ever deployed as part of the public Internet as an essential building block of the infrastructure, they must be able to operate in a hostile environment, where a large number of users are assumed to collude against the network and other users. In this paper we present a security design through the network stack for a data-centric pub/sub architecture that achieves availability, information integrity, and allows application-specific security policies while remaining scalable. We analyse the solution and examine the minimal trust assumptions between the stakeholders in the system to guarantee the security properties advertised.</div></front></TEI><affiliations><list><country><li>Finlande</li></country><region><li>Uusimaa</li></region><settlement><li>Helsinki</li></settlement><orgName><li>Université d'Helsinki</li></orgName></list><tree><country name="Finlande"><noRegion><name sortKey="Visala, Kari" sort="Visala, Kari" uniqKey="Visala K" first="Kari" last="Visala">Kari Visala</name></noRegion><name sortKey="Lagutin, Dmitrij" sort="Lagutin, Dmitrij" uniqKey="Lagutin D" first="Dmitrij" last="Lagutin">Dmitrij Lagutin</name><name sortKey="Lagutin, Dmitrij" sort="Lagutin, Dmitrij" uniqKey="Lagutin D" first="Dmitrij" last="Lagutin">Dmitrij Lagutin</name><name sortKey="Tarkoma, Sasu" sort="Tarkoma, Sasu" uniqKey="Tarkoma S" first="Sasu" last="Tarkoma">Sasu Tarkoma</name><name sortKey="Tarkoma, Sasu" sort="Tarkoma, Sasu" uniqKey="Tarkoma S" first="Sasu" last="Tarkoma">Sasu Tarkoma</name><name sortKey="Visala, Kari" sort="Visala, Kari" uniqKey="Visala K" first="Kari" last="Visala">Kari Visala</name></country></tree></affiliations></record>Pour manipuler ce document sous Unix (Dilib)
EXPLOR_STEP=$WICRI_ROOT/Wicri/Belgique/explor/OpenAccessBelV2/Data/Main/Exploration
HfdSelect -h $EXPLOR_STEP/biblio.hfd -nk 000B24 | SxmlIndent | more
Ou
HfdSelect -h $EXPLOR_AREA/Data/Main/Exploration/biblio.hfd -nk 000B24 | SxmlIndent | more
Pour mettre un lien sur cette page dans le réseau Wicri
{{Explor lien
|wiki= Wicri/Belgique
|area= OpenAccessBelV2
|flux= Main
|étape= Exploration
|type= RBID
|clé= ISTEX:5A93CD8564787217FA175F4D821E3039BA1B3964
|texte= Security Design for an Inter-Domain Publish/Subscribe Architecture
}}
| This area was generated with Dilib version V0.6.25. |  |