Albert Lopez scite author profile

The specification and enforcement of network-wide policies in a single administrative domain is common in today's networks and considered as already resolved. However, this is not the case for multi-administrative domains, e.g. among different enterprises. In such situation, new problems arise that challenge classical solutions such as PKIs, which suffer from scalability and granularity concerns. In this paper, we present an extension to Group-Based Policy -a widely used network policy language-for the aforementioned scenario. To do so, we take advantage of a permissioned blockchain implementation (Hyperledger Fabric) to distribute access control policies in a secure and auditable manner, preserving at the same time the independence of each organization. Network administrators specify polices that are rendered into blockchain transactions. A LISP control plane (RFC 6830) allows routers performing the access control to query the blockchain for authorizations. We have implemented an end-to-end experimental prototype and evaluated it in terms of scalability and network latency.

show abstract

IPchain: Securing IP Prefix Allocation and Delegation with Blockchain

Paillissé

Ferriol

García

et al. 2018

View full text Add to dashboard Cite

We present IPchain, a blockchain to store the allocations and delegations of IP addresses, with the aim of easing the deployment of secure interdomain routing systems. Interdomain routing security is of vital importance to the Internet since it prevents unwanted traffic redirections. IPchain makes use of blockchains' properties to provide flexible trust models and simplified management when compared to existing systems. In this paper we argue that Proof of Stake is a suitable consensus algorithm for IPchain due to the unique incentive structure of this use-case. We have implemented and evaluated IPchain's performance and scalability storing around 150k IP prefixes in a 1GB chain.

show abstract

Video transcoding in a Grid network with User Controlled LightPaths

Grasa

Figuerola

Recio

et al. 2006

Future Generation Computer Systems

View full text Add to dashboard Cite

Articulated private networks in UCLP

Grasa

Figuerola

Lopez

et al. 2007

View full text Add to dashboard Cite

Purpose -The purpose of this paper is to illustrate the advantages of using the UCLP software for network operators, advanced and regular end users in the research networking community. Design/methodology/approach -This paper provides an example of the deployment of UCLP in the GÉ ANT2/National Research and Education Networks (NRENs) scenario, and compares how network operators, advanced users and regular end users would do their work, with and without UCLP. Findings -The paper provides high-level technical information about UCLP as well as depicting the drivers for its use in the European research networking community. Research limitations/implications -This paper does not explain the details of the deployment of the software in the GÉ ANT2/National Research and Education Networks (NRENs) scenario, it just explains the benefits that the deployment of the software would provide. If the deployment was to be done today, some improvements to UCLP should be done, as well as support for more equipment vendors should be added. Practical implications -UCLP could provide more flexibility to the e-science community if it was deployed over the European research networking infrastructure, because it would isolate network users from each other while providing them an unprecedented degree of control over the network. Originality/value -Nowadays, several control/management solutions for networks exist, but none that is capable of partitioning a physical network into slices and handoff its management to the users, like UCLP does. This is the first UCLP paper that studies a hypothetical deployment of UCLP in the European research networking scenario, and evaluates the drivers and implications of such a deployment.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Albert Lopez

UCLPv2: a network virtualization framework built on web services [web services in telecommunications, part II]

Distributed Access Control with Blockchain

IPchain: Securing IP Prefix Allocation and Delegation with Blockchain

Video transcoding in a Grid network with User Controlled LightPaths

Articulated private networks in UCLP

Contact Info

Product

Resources

About