Hardened networks: Incremental upgrading of the Internet for attack resilience

Shu Zhang, Partha Dasgupta

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

Original languageEnglish (US)
Title of host publicationProceedings - International Conference on Computer Communications and Networks, ICCCN
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages595-598
Number of pages4
Volume2003-January
ISBN (Print)0780379454
DOIs
StatePublished - 2003
Event12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003 - Dallas, United States
Duration: Oct 20 2003Oct 22 2003

Other

Other12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003
CountryUnited States
CityDallas
Period10/20/0310/22/03

Fingerprint

Routers
Network security
Internet
Flow control
Authentication
Cryptography
Network protocols

Keywords

  • Access protocols
  • Authentication
  • Cryptographic protocols
  • Cryptography
  • Information filtering
  • Information security
  • Internet
  • IP networks
  • Resilience
  • TCPIP

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Software

Cite this

Zhang, S., & Dasgupta, P. (2003). Hardened networks: Incremental upgrading of the Internet for attack resilience. In Proceedings - International Conference on Computer Communications and Networks, ICCCN (Vol. 2003-January, pp. 595-598). [1284231] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICCCN.2003.1284231

Hardened networks : Incremental upgrading of the Internet for attack resilience. / Zhang, Shu; Dasgupta, Partha.

Proceedings - International Conference on Computer Communications and Networks, ICCCN. Vol. 2003-January Institute of Electrical and Electronics Engineers Inc., 2003. p. 595-598 1284231.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Zhang, S & Dasgupta, P 2003, Hardened networks: Incremental upgrading of the Internet for attack resilience. in Proceedings - International Conference on Computer Communications and Networks, ICCCN. vol. 2003-January, 1284231, Institute of Electrical and Electronics Engineers Inc., pp. 595-598, 12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003, Dallas, United States, 10/20/03. https://doi.org/10.1109/ICCCN.2003.1284231
Zhang S, Dasgupta P. Hardened networks: Incremental upgrading of the Internet for attack resilience. In Proceedings - International Conference on Computer Communications and Networks, ICCCN. Vol. 2003-January. Institute of Electrical and Electronics Engineers Inc. 2003. p. 595-598. 1284231 https://doi.org/10.1109/ICCCN.2003.1284231
Zhang, Shu ; Dasgupta, Partha. / Hardened networks : Incremental upgrading of the Internet for attack resilience. Proceedings - International Conference on Computer Communications and Networks, ICCCN. Vol. 2003-January Institute of Electrical and Electronics Engineers Inc., 2003. pp. 595-598
@inproceedings{78266155bc124cee9fd5b7da8aeee5f8,
title = "Hardened networks: Incremental upgrading of the Internet for attack resilience",
abstract = "Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.",
keywords = "Access protocols, Authentication, Cryptographic protocols, Cryptography, Information filtering, Information security, Internet, IP networks, Resilience, TCPIP",
author = "Shu Zhang and Partha Dasgupta",
year = "2003",
doi = "10.1109/ICCCN.2003.1284231",
language = "English (US)",
isbn = "0780379454",
volume = "2003-January",
pages = "595--598",
booktitle = "Proceedings - International Conference on Computer Communications and Networks, ICCCN",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - Hardened networks

T2 - Incremental upgrading of the Internet for attack resilience

AU - Zhang, Shu

AU - Dasgupta, Partha

PY - 2003

Y1 - 2003

N2 - Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

AB - Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

KW - Access protocols

KW - Authentication

KW - Cryptographic protocols

KW - Cryptography

KW - Information filtering

KW - Information security

KW - Internet

KW - IP networks

KW - Resilience

KW - TCPIP

UR - http://www.scopus.com/inward/record.url?scp=52949143786&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=52949143786&partnerID=8YFLogxK

U2 - 10.1109/ICCCN.2003.1284231

DO - 10.1109/ICCCN.2003.1284231

M3 - Conference contribution

AN - SCOPUS:52949143786

SN - 0780379454

VL - 2003-January

SP - 595

EP - 598

BT - Proceedings - International Conference on Computer Communications and Networks, ICCCN

PB - Institute of Electrical and Electronics Engineers Inc.

ER -