[en] Content-Centric Networking (CCN) is a promising routing paradigm for content dissemination over a future Internet based on named data instead of named hosts. The CCN architecture has aspects that provide more scalability, security, collaborative and pervasive networking. However, several key components that secures the current Internet are still missing in CCN, in particular a firewall able to enforce security policies. We provide a comprehensive study of CCN security requirements from which we design the first CCN-compliant firewall, including syntax and definition of rules. In particular, based on CCN features, our firewall can filter packets according to both their authentication and the semantics of the content name. We also provide a performance evaluation of our prototype.
Disciplines :
Sciences informatiques
Auteur, co-auteur :
GOERGEN, David ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
CHOLEZ, Thibault ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
FRANÇOIS, Jérôme ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
ENGEL, Thomas ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Langue du document :
Anglais
Titre :
A semantic firewall for Content Centric Networking
Date de publication/diffusion :
mai 2013
Nom de la manifestation :
13th IFIP/IEEE International Symposium on Integrated Network Management
Organisateur de la manifestation :
IFIP/IEEE
Lieu de la manifestation :
Ghent, Belgique
Date de la manifestation :
from 27-05-2013 to 31-05-2013
Manifestation à portée :
International
Titre de l'ouvrage principal :
IFIP/IEEE International Symposium on Integrated Network Management
