Attribute-based access control for ICN naming scheme

Bing Li, Ashwin Prabhu Verleker, Dijiang Huang, Zhijie Wang, Yan Zhu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

13 Citations (Scopus)

Abstract

Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e. data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of the owner's control once it's published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms. However, applying ABE in ICN has two challenges: from management perspective, managing attributes is complicated in distributed manners; from privacy perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and associated attribute management solution are presented in this paper. This proposed approach is compatible with existing flat name based ICN architectures.

Original languageEnglish (US)
Title of host publication2014 IEEE Conference on Communications and Network Security, CNS 2014
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages391-399
Number of pages9
ISBN (Print)9781479958900
DOIs
StatePublished - Dec 23 2014
Event2014 IEEE Conference on Communications and Network Security, CNS 2014 - San Francisco, United States
Duration: Oct 29 2014Oct 31 2014

Other

Other2014 IEEE Conference on Communications and Network Security, CNS 2014
CountryUnited States
CitySan Francisco
Period10/29/1410/31/14

Fingerprint

Access control
Cryptography
Network architecture

Keywords

  • access control
  • Attribute management
  • information centric networking
  • naming
  • privacy

ASJC Scopus subject areas

  • Computer Networks and Communications

Cite this

Li, B., Prabhu Verleker, A., Huang, D., Wang, Z., & Zhu, Y. (2014). Attribute-based access control for ICN naming scheme. In 2014 IEEE Conference on Communications and Network Security, CNS 2014 (pp. 391-399). [6997508] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CNS.2014.6997508

Attribute-based access control for ICN naming scheme. / Li, Bing; Prabhu Verleker, Ashwin; Huang, Dijiang; Wang, Zhijie; Zhu, Yan.

2014 IEEE Conference on Communications and Network Security, CNS 2014. Institute of Electrical and Electronics Engineers Inc., 2014. p. 391-399 6997508.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Li, B, Prabhu Verleker, A, Huang, D, Wang, Z & Zhu, Y 2014, Attribute-based access control for ICN naming scheme. in 2014 IEEE Conference on Communications and Network Security, CNS 2014., 6997508, Institute of Electrical and Electronics Engineers Inc., pp. 391-399, 2014 IEEE Conference on Communications and Network Security, CNS 2014, San Francisco, United States, 10/29/14. https://doi.org/10.1109/CNS.2014.6997508
Li B, Prabhu Verleker A, Huang D, Wang Z, Zhu Y. Attribute-based access control for ICN naming scheme. In 2014 IEEE Conference on Communications and Network Security, CNS 2014. Institute of Electrical and Electronics Engineers Inc. 2014. p. 391-399. 6997508 https://doi.org/10.1109/CNS.2014.6997508
Li, Bing ; Prabhu Verleker, Ashwin ; Huang, Dijiang ; Wang, Zhijie ; Zhu, Yan. / Attribute-based access control for ICN naming scheme. 2014 IEEE Conference on Communications and Network Security, CNS 2014. Institute of Electrical and Electronics Engineers Inc., 2014. pp. 391-399
@inproceedings{a5018ba4218e4fe8bb44f3fa850af5e1,
title = "Attribute-based access control for ICN naming scheme",
abstract = "Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e. data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of the owner's control once it's published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms. However, applying ABE in ICN has two challenges: from management perspective, managing attributes is complicated in distributed manners; from privacy perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and associated attribute management solution are presented in this paper. This proposed approach is compatible with existing flat name based ICN architectures.",
keywords = "access control, Attribute management, information centric networking, naming, privacy",
author = "Bing Li and {Prabhu Verleker}, Ashwin and Dijiang Huang and Zhijie Wang and Yan Zhu",
year = "2014",
month = "12",
day = "23",
doi = "10.1109/CNS.2014.6997508",
language = "English (US)",
isbn = "9781479958900",
pages = "391--399",
booktitle = "2014 IEEE Conference on Communications and Network Security, CNS 2014",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - Attribute-based access control for ICN naming scheme

AU - Li, Bing

AU - Prabhu Verleker, Ashwin

AU - Huang, Dijiang

AU - Wang, Zhijie

AU - Zhu, Yan

PY - 2014/12/23

Y1 - 2014/12/23

N2 - Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e. data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of the owner's control once it's published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms. However, applying ABE in ICN has two challenges: from management perspective, managing attributes is complicated in distributed manners; from privacy perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and associated attribute management solution are presented in this paper. This proposed approach is compatible with existing flat name based ICN architectures.

AB - Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e. data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of the owner's control once it's published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms. However, applying ABE in ICN has two challenges: from management perspective, managing attributes is complicated in distributed manners; from privacy perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and associated attribute management solution are presented in this paper. This proposed approach is compatible with existing flat name based ICN architectures.

KW - access control

KW - Attribute management

KW - information centric networking

KW - naming

KW - privacy

UR - http://www.scopus.com/inward/record.url?scp=84921518293&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84921518293&partnerID=8YFLogxK

U2 - 10.1109/CNS.2014.6997508

DO - 10.1109/CNS.2014.6997508

M3 - Conference contribution

AN - SCOPUS:84921518293

SN - 9781479958900

SP - 391

EP - 399

BT - 2014 IEEE Conference on Communications and Network Security, CNS 2014

PB - Institute of Electrical and Electronics Engineers Inc.

ER -