Efficient multicast source authentication using layered hash-chaining scheme

Challal, Yacine; Bouabdallah, Abdelmadjid; Hinard, Yoann

doi:10.1109/lcn.2004.48

Cited by 8 publications

(2 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hash-chain signature schemes are particularly appealing for lowpowered devices due to the reduced resource burden of traditional signature schemes, which have lead to several protocols incorporating their use [3,8,5,38]. Our hash-chain-based authentication method is somewhat similar to Server-Supported Signatures (S 3 ) scheme [3].…”

Section: Ack Authenticationmentioning

confidence: 99%

Securing instrumented environments over content-centric networking: the case of lighting control and NDN

Burke

Gasti²,

Nathan

et al. 2013

2013 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

Instrumented environments, such as modern building automation systems (BAS), are becoming commonplace and are increasingly interconnected with (and sometimes by) enterprise networks and the Internet. Regardless of the underlying communication platform, secure control of devices in such environments is a challenging task. The current trend is to move from proprietary communication media and protocols to IP over Ethernet. While the move to IP represents progress, new and different Internet architectures might be better-suited for instrumented environments.In this paper, we consider security of instrumented environments in the context of Content-Centric Networking (CCN). In particular, we focus on building automation over Named-Data Networking (NDN), a prominent instance of CCN. After identifying security requirements in a specific BAS sub-domain (lighting control), we construct a concrete NDN-based security architecture, analyze its properties and report on preliminary implementation and experimental results. We believe that this work represents a useful exercise in assessing the utility of NDN in securing a communication paradigm well outside of its claimed forte of content distribution. At the same time, we provide a viable (secure and efficient) communication platform for a class of instrumented environments exemplified by lighting control. IntroductionThe Internet has clearly proven to be a tremendous global success. Billions of people worldwide use it to perform a wide range of everyday tasks. It hosts a large number of information-intensive services, involves enormous amounts of content created and consumed over the Web, and interconnects untold millions of wired, wireless, fixed and mobile computing devices.Since Internet's inception, the amount of data exchanged over it has witnessed exponential growth. Recently, this growth intensified due to increases in: (1) distribution of multimedia content, (2) popularity of social networks and (3) amount of user-generated content. Unfortunately, the same usage model that fueled Internet's success is also exposing its limitations. Core ideas of today's Internet were developed in the 1970-s, when telephony -i.e., a point-to-point conversation between two entities -was the only successful example of effective global-scale communication technology. Moreover, original Internet applications were few and modest in nature, e.g., store-and-forward email and remote computer access.The world has changed dramatically since the 1970-s and the Internet now has to accommodate new services and applications as well as different usage models. To keep pace with changes and move the Internet into the future, several research efforts to design new Internet architectures have been initiated in recent years.Named-Data Networking (NDN) [30] is an on-going research project that aims to develop a candidate next-generation Internet architecture. NDN exemplifies the so-called Content-Centric approach [18,24,28] to networking. It explicitly names content instead of physical locations (i.e., host...

show abstract

Section: Ack Authenticationmentioning

confidence: 99%

Securing instrumented environments over content-centric networking: the case of lighting control and NDN

Burke

Gasti²,

Nathan

et al. 2013

2013 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

show abstract

“…Within each packet, the sender includes the signed block hash, the packet ID, and the hashes of siblings of all the nodes in the current packet's path to the root [2]. Each receiver first computes the hash of the received packet.…”

Section: Figure 1 Hashing Treementioning

confidence: 99%