Network-Layer Accountability Protocols: A Survey

He, Lin; Liu, Ying; Ren, Gang

doi:10.1109/access.2018.2879489

Cited by 2 publications

(3 citation statements)

References 57 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…is study follows the definition of network layer accountability similar to that in [1,7,13], i.e., the ability to identify the source of a specific packet and take countermeasures in case of misbehaviors. We mainly concern cryptography-based mechanisms which can establish an unforgeable association between the entity and the packet sent through the cryptographic mechanism.…”

Section: Related Workmentioning

confidence: 99%

“…Accountability in the network is a means to identify the sources of traffic for two purposes: to selectively filter abusive or noncompliant traffic from malicious sources on a perdestination basis, while permitting traffic from others to proceed, and to report and disconnect abusive machines before they attack others [1]. e lack of accountability in current Internet architecture facilitates malicious or infected hosts arbitrarily spoof their source addresses to evade responsibility for their malicious packets [2].…”

Section: Introductionmentioning

confidence: 99%

“…e crucial problem to achieve Internet accountability is how to bind an IP address or prefix to its owner authentically. Cryptography-based mechanisms have attracted more attention [1]. Numerous existing proposals rely on a centralized public key infrastructure (PKI) and certificates to bind an IP address or prefix to its owner's public key.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

DIIA: Blockchain-Based Decentralized Infrastructure for Internet Accountability

Xing

2021

Security and Communication Networks

View full text Add to dashboard Cite

The Internet lacking accountability suffers from IP address spoofing, prefix hijacking, and DDoS attacks. Global PKI-based accountable network involves harmful centralized authority abuse and complex certificate management. The inherently accountable network with self-certifying addresses is incompatible with the current Internet and faces the difficulty of revoking and updating keys. This study presents DIIA, a blockchain-based decentralized infrastructure to provide accountability for the current Internet. Specifically, DIIA designs a public-permissioned blockchain called TIPchain to act as a decentralized trust anchor, allowing cryptographic authentication of IP addresses without any global trusted authority. DIIA also proposes the revocable trustworthy IP address bound to the cryptographic key, which supports automatic key renewal and efficient key revocation and eliminates complexity certificate management. We present several security mechanisms based on DIIA to show how DIIA can help to enhance network layer security. We also implement a prototype system and experiment with real-world data. The results demonstrate the feasibility and suitability of our work in practice.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation