TY - JOUR
T1 - Attribute-based Access Control for ICN Naming Scheme
AU - Li, Bing
AU - Huang, Dijiang
AU - Wang, Zhijie
AU - Zhu, Yan
N1 - Funding Information:
This research is supported by ONR Young Investigator Program(award NO. N00014-10-1-0714), Naval Research Lab (award NO. N00173-15-G017), ARO (award NO. W911NF-11-1-0191), NSF SaTC CNS (award NO. 1528099), the NATO Science for Peace & Security Multi-Year Project (MD.SFPP 984425), the National 973 Program (Grant No. 2013CB329601), and the National Natural Science Foundation of China (Grant NO. 61472032).
Publisher Copyright:
© 2004-2012 IEEE.
PY - 2018/3/1
Y1 - 2018/3/1
N2 - Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e., data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of its owner's control once it is published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms in this environment. However, applying ABE in ICN faces two challenges: from management perspective, it is complicated to manage attributes in distributed manners; from privacy protection perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and its corresponding attribute management solution are presented in this paper. The proposed approach is compatible with existing flat name based ICN architectures.
AB - Information Centric Networking (ICN) is a new network architecture that aims to overcome the weakness of existing IP-based networking architecture. Instead of establishing a connection between the communicating hosts, ICN focuses on the content, i.e., data, transmitted in network. Content copies in ICN can be cached at different locations. The content is out of its owner's control once it is published. Thus, enforcing access control policies on distributed content copies is crucial in ICN. Attribute-Based Encryption (ABE) is a feasible approach to enforce such control mechanisms in this environment. However, applying ABE in ICN faces two challenges: from management perspective, it is complicated to manage attributes in distributed manners; from privacy protection perspective, unlike in traditional networks, the enforced content access policies are public to all the ICN users. Thus, it is desirable that unauthorized content viewers are not able to retrieve the access policy. To this end, a privacy-preserving access control scheme for ICN and its corresponding attribute management solution are presented in this paper. The proposed approach is compatible with existing flat name based ICN architectures.
KW - Privacy
KW - access control
KW - attribute management
KW - information centric networking
KW - naming
UR - http://www.scopus.com/inward/record.url?scp=85042777507&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85042777507&partnerID=8YFLogxK
U2 - 10.1109/TDSC.2016.2550437
DO - 10.1109/TDSC.2016.2550437
M3 - Article
AN - SCOPUS:85042777507
SN - 1545-5971
VL - 15
SP - 194
EP - 206
JO - IEEE Transactions on Dependable and Secure Computing
JF - IEEE Transactions on Dependable and Secure Computing
IS - 2
ER -