An encryption and probability based access control model for named data networking

Tao Chen, Kai Lei, Kuai Xu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

18 Citations (Scopus)

Abstract

The new named data networking (NDN) has shifted the Internet from today's IP-based packet-delivery model to the name-based data retrieval model. The architecture shift from IP addresses to named data results in effective content delivery via in-networking cache and direct object retrieval. However, this shift has also created challenges and obstacles for securing data objects and providing appropriate access control on named data due to broad data replications and the loss of network perimeters. This paper designs, implements, and evaluates an encryption and probability based access control model for NDN with video streaming service as a case study. In particularly, we explore a combination of public-key cryptography and symmetric ciphers to encrypt video data for preventing unauthorized access. In addition, we build a bloom-filter probabilistic data structure for pre-filtering Interests from consumers without desired credentials. Our experimental results have demonstrated the capabilities of the proposed model for providing access control while incurring low system and performance overhead on producers and consumers.

Original languageEnglish (US)
Title of host publication2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Print)9781479975754
DOIs
StatePublished - Jan 20 2015
Event33rd IEEE International Performance Computing and Communications Conference, IPCCC 2014 - Austin, United States
Duration: Dec 5 2014Dec 7 2014

Other

Other33rd IEEE International Performance Computing and Communications Conference, IPCCC 2014
CountryUnited States
CityAustin
Period12/5/1412/7/14

Fingerprint

Access control
Cryptography
Public key cryptography
Video streaming
Data structures
Internet

ASJC Scopus subject areas

  • Software
  • Computational Theory and Mathematics
  • Computer Networks and Communications

Cite this

Chen, T., Lei, K., & Xu, K. (2015). An encryption and probability based access control model for named data networking. In 2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014 [7017100] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/PCCC.2014.7017100

An encryption and probability based access control model for named data networking. / Chen, Tao; Lei, Kai; Xu, Kuai.

2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014. Institute of Electrical and Electronics Engineers Inc., 2015. 7017100.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Chen, T, Lei, K & Xu, K 2015, An encryption and probability based access control model for named data networking. in 2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014., 7017100, Institute of Electrical and Electronics Engineers Inc., 33rd IEEE International Performance Computing and Communications Conference, IPCCC 2014, Austin, United States, 12/5/14. https://doi.org/10.1109/PCCC.2014.7017100
Chen T, Lei K, Xu K. An encryption and probability based access control model for named data networking. In 2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014. Institute of Electrical and Electronics Engineers Inc. 2015. 7017100 https://doi.org/10.1109/PCCC.2014.7017100
Chen, Tao ; Lei, Kai ; Xu, Kuai. / An encryption and probability based access control model for named data networking. 2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014. Institute of Electrical and Electronics Engineers Inc., 2015.
@inproceedings{fbe6d41c099c4fd5bda5c2f0bf45762c,
title = "An encryption and probability based access control model for named data networking",
abstract = "The new named data networking (NDN) has shifted the Internet from today's IP-based packet-delivery model to the name-based data retrieval model. The architecture shift from IP addresses to named data results in effective content delivery via in-networking cache and direct object retrieval. However, this shift has also created challenges and obstacles for securing data objects and providing appropriate access control on named data due to broad data replications and the loss of network perimeters. This paper designs, implements, and evaluates an encryption and probability based access control model for NDN with video streaming service as a case study. In particularly, we explore a combination of public-key cryptography and symmetric ciphers to encrypt video data for preventing unauthorized access. In addition, we build a bloom-filter probabilistic data structure for pre-filtering Interests from consumers without desired credentials. Our experimental results have demonstrated the capabilities of the proposed model for providing access control while incurring low system and performance overhead on producers and consumers.",
author = "Tao Chen and Kai Lei and Kuai Xu",
year = "2015",
month = "1",
day = "20",
doi = "10.1109/PCCC.2014.7017100",
language = "English (US)",
isbn = "9781479975754",
booktitle = "2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - An encryption and probability based access control model for named data networking

AU - Chen, Tao

AU - Lei, Kai

AU - Xu, Kuai

PY - 2015/1/20

Y1 - 2015/1/20

N2 - The new named data networking (NDN) has shifted the Internet from today's IP-based packet-delivery model to the name-based data retrieval model. The architecture shift from IP addresses to named data results in effective content delivery via in-networking cache and direct object retrieval. However, this shift has also created challenges and obstacles for securing data objects and providing appropriate access control on named data due to broad data replications and the loss of network perimeters. This paper designs, implements, and evaluates an encryption and probability based access control model for NDN with video streaming service as a case study. In particularly, we explore a combination of public-key cryptography and symmetric ciphers to encrypt video data for preventing unauthorized access. In addition, we build a bloom-filter probabilistic data structure for pre-filtering Interests from consumers without desired credentials. Our experimental results have demonstrated the capabilities of the proposed model for providing access control while incurring low system and performance overhead on producers and consumers.

AB - The new named data networking (NDN) has shifted the Internet from today's IP-based packet-delivery model to the name-based data retrieval model. The architecture shift from IP addresses to named data results in effective content delivery via in-networking cache and direct object retrieval. However, this shift has also created challenges and obstacles for securing data objects and providing appropriate access control on named data due to broad data replications and the loss of network perimeters. This paper designs, implements, and evaluates an encryption and probability based access control model for NDN with video streaming service as a case study. In particularly, we explore a combination of public-key cryptography and symmetric ciphers to encrypt video data for preventing unauthorized access. In addition, we build a bloom-filter probabilistic data structure for pre-filtering Interests from consumers without desired credentials. Our experimental results have demonstrated the capabilities of the proposed model for providing access control while incurring low system and performance overhead on producers and consumers.

UR - http://www.scopus.com/inward/record.url?scp=84923163779&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84923163779&partnerID=8YFLogxK

U2 - 10.1109/PCCC.2014.7017100

DO - 10.1109/PCCC.2014.7017100

M3 - Conference contribution

AN - SCOPUS:84923163779

SN - 9781479975754

BT - 2014 IEEE 33rd International Performance Computing and Communications Conference, IPCCC 2014

PB - Institute of Electrical and Electronics Engineers Inc.

ER -