Hardened networks: Incremental upgrading of the Internet for attack resilience

Shu Zhang; Partha Dasgupta

doi:10.1109/ICCCN.2003.1284231

Hardened networks: Incremental upgrading of the Internet for attack resilience

Shu Zhang, Partha Dasgupta

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Scopus citations

Abstract

Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

Original language	English (US)
Title of host publication	Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003
Editors	Ronald P. Luijten, E.K. Park, Luiz DaSilva
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	595-598
Number of pages	4
ISBN (Electronic)	0780379454
DOIs	https://doi.org/10.1109/ICCCN.2003.1284231
State	Published - Jan 1 2003
Event	12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003 - Dallas, United States Duration: Oct 20 2003 → Oct 22 2003

Publication series

Name	Proceedings - International Conference on Computer Communications and Networks, ICCCN
Volume	2003-January
ISSN (Print)	1095-2055

Other

Other	12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003
Country/Territory	United States
City	Dallas
Period	10/20/03 → 10/22/03

Keywords

Access protocols
Authentication
Cryptographic protocols
Cryptography
IP networks
Information filtering
Information security
Internet
Resilience
TCPIP

ASJC Scopus subject areas

Computer Networks and Communications
Hardware and Architecture
Software

Access to Document

10.1109/ICCCN.2003.1284231

Cite this

Zhang, S., & Dasgupta, P. (2003). Hardened networks: Incremental upgrading of the Internet for attack resilience. In R. P. Luijten, E. K. Park, & L. DaSilva (Eds.), Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003 (pp. 595-598). [1284231] (Proceedings - International Conference on Computer Communications and Networks, ICCCN; Vol. 2003-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICCCN.2003.1284231

Hardened networks : Incremental upgrading of the Internet for attack resilience. / Zhang, Shu; Dasgupta, Partha.

Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003. ed. / Ronald P. Luijten; E.K. Park; Luiz DaSilva. Institute of Electrical and Electronics Engineers Inc., 2003. p. 595-598 1284231 (Proceedings - International Conference on Computer Communications and Networks, ICCCN; Vol. 2003-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Zhang, S & Dasgupta, P 2003, Hardened networks: Incremental upgrading of the Internet for attack resilience. in RP Luijten, EK Park & L DaSilva (eds), Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003., 1284231, Proceedings - International Conference on Computer Communications and Networks, ICCCN, vol. 2003-January, Institute of Electrical and Electronics Engineers Inc., pp. 595-598, 12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003, Dallas, United States, 10/20/03. https://doi.org/10.1109/ICCCN.2003.1284231

Zhang S, Dasgupta P. Hardened networks: Incremental upgrading of the Internet for attack resilience. In Luijten RP, Park EK, DaSilva L, editors, Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003. Institute of Electrical and Electronics Engineers Inc. 2003. p. 595-598. 1284231. (Proceedings - International Conference on Computer Communications and Networks, ICCCN). doi: 10.1109/ICCCN.2003.1284231

Zhang, Shu ; Dasgupta, Partha. / Hardened networks : Incremental upgrading of the Internet for attack resilience. Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003. editor / Ronald P. Luijten ; E.K. Park ; Luiz DaSilva. Institute of Electrical and Electronics Engineers Inc., 2003. pp. 595-598 (Proceedings - International Conference on Computer Communications and Networks, ICCCN).

@inproceedings{78266155bc124cee9fd5b7da8aeee5f8,

title = "Hardened networks: Incremental upgrading of the Internet for attack resilience",

abstract = "Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.",

keywords = "Access protocols, Authentication, Cryptographic protocols, Cryptography, IP networks, Information filtering, Information security, Internet, Resilience, TCPIP",

author = "Shu Zhang and Partha Dasgupta",

year = "2003",

month = jan,

day = "1",

doi = "10.1109/ICCCN.2003.1284231",

language = "English (US)",

series = "Proceedings - International Conference on Computer Communications and Networks, ICCCN",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "595--598",

editor = "Luijten, {Ronald P.} and E.K. Park and Luiz DaSilva",

booktitle = "Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003",

note = "12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003 ; Conference date: 20-10-2003 Through 22-10-2003",

}

TY - GEN

T1 - Hardened networks

T2 - 12th IEEE International Conference on Computer Communications and Networks, ICCCN 2003

AU - Zhang, Shu

AU - Dasgupta, Partha

PY - 2003/1/1

Y1 - 2003/1/1

N2 - Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

AB - Network security is conventionally implemented at the edge of the network (such as SSL, SSh), or router-based filtering. They require the awareness from the users and the understanding of the complicated configuration. They do little to provide resilience to network attacks. In this paper, we discuss a different approach to enhance of network security. We use smarter routers to build security mechanisms (source authentication, flow control, encryption) into the fabric of the network. It allows for incremental upgrading as well as compatibility with all current protocols. Since the security mechanisms are at the router level, there is no impact on the end user. We also show some implementation and simulation results.

KW - Access protocols

KW - Authentication

KW - Cryptographic protocols

KW - Cryptography

KW - IP networks

KW - Information filtering

KW - Information security

KW - Internet

KW - Resilience

KW - TCPIP

UR - http://www.scopus.com/inward/record.url?scp=52949143786&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=52949143786&partnerID=8YFLogxK

U2 - 10.1109/ICCCN.2003.1284231

DO - 10.1109/ICCCN.2003.1284231

M3 - Conference contribution

AN - SCOPUS:52949143786

T3 - Proceedings - International Conference on Computer Communications and Networks, ICCCN

SP - 595

EP - 598

BT - Proceedings - 12th International Conference on Computer Communications and Networks, ICCCN 2003

A2 - Luijten, Ronald P.

A2 - Park, E.K.

A2 - DaSilva, Luiz

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 October 2003 through 22 October 2003

ER -

Hardened networks: Incremental upgrading of the Internet for attack resilience

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this