Detecting and Mitigating Repaying Attack in Expressive Internet Architecture (XIA)

J. ICT Stand. Pub Date : 2014-12-31 DOI:10.13052/JICTS2245-800X.225

Beny Nugraha, M. Khondoker, R. Marx, K. Bayarou

{"title":"Detecting and Mitigating Repaying Attack in Expressive Internet Architecture (XIA)","authors":"Beny Nugraha, M. Khondoker, R. Marx, K. Bayarou","doi":"10.13052/JICTS2245-800X.225","DOIUrl":null,"url":null,"abstract":"Several Future Internet (FI) architectures have been proposed to address the problems of the Internet including flexibility (so called IP bottleneck), host-based addressing (addressing a host rather than the content itself), and security. In the beginning of this article, we survey the security solutions of seven FI architectures, namely XIA, RINA, NENA, SONATE, Mobility-First, NDN, and SONATE, based on literatures, prototypes, and demonstrations. It has been found that none of the architectures can fulfill all of the security goals: confidentiality, authentication, integrity and availability. Further in this article, we focus on eXpressive Internet Architecture (XIA) as it is the most secure and open-source Content-Centric Network (CCN). CCN is claimed by the Future Content Networks (FCN) Group to be the Future Internet. However, XIA does not have any mechanisms to mitigate the replaying attack, thus, this article proposes and implements a solution to mitigate it. Several existing solutions have been analyzed to derive the requirements for the proposed solution. By implementing the proposed protocol, XIA is now able to mitigate all of the reviewed network attacks. The evaluation shows that the proposed solution is more secure and less complex over the existing solutions. Journal of ICT, Vol. 2, 151–186. doi: 10.13052/jicts2245-800X.225 c © 2014 River Publishers. All rights reserved. 152 B. Nugraha, R. Khondoker et al.","PeriodicalId":394466,"journal":{"name":"J. ICT Stand.","volume":"986 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-12-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"J. ICT Stand.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.13052/JICTS2245-800X.225","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Several Future Internet (FI) architectures have been proposed to address the problems of the Internet including flexibility (so called IP bottleneck), host-based addressing (addressing a host rather than the content itself), and security. In the beginning of this article, we survey the security solutions of seven FI architectures, namely XIA, RINA, NENA, SONATE, Mobility-First, NDN, and SONATE, based on literatures, prototypes, and demonstrations. It has been found that none of the architectures can fulfill all of the security goals: confidentiality, authentication, integrity and availability. Further in this article, we focus on eXpressive Internet Architecture (XIA) as it is the most secure and open-source Content-Centric Network (CCN). CCN is claimed by the Future Content Networks (FCN) Group to be the Future Internet. However, XIA does not have any mechanisms to mitigate the replaying attack, thus, this article proposes and implements a solution to mitigate it. Several existing solutions have been analyzed to derive the requirements for the proposed solution. By implementing the proposed protocol, XIA is now able to mitigate all of the reviewed network attacks. The evaluation shows that the proposed solution is more secure and less complex over the existing solutions. Journal of ICT, Vol. 2, 151–186. doi: 10.13052/jicts2245-800X.225 c © 2014 River Publishers. All rights reserved. 152 B. Nugraha, R. Khondoker et al.

查看原文本刊更多论文

表达性互联网架构(XIA)中还贷攻击的检测与缓解

已经提出了几个未来互联网(FI)架构来解决互联网的问题，包括灵活性(所谓的IP瓶颈)、基于主机的寻址(寻址主机而不是内容本身)和安全性。在本文的开头，我们根据文献、原型和演示，调查了七种FI架构的安全解决方案，即XIA、RINA、NENA、SONATE、Mobility-First、NDN和SONATE。我们发现，没有一种体系结构能够满足所有的安全目标:机密性、身份验证、完整性和可用性。在本文中，我们将进一步关注表达性互联网架构(eXpressive Internet Architecture, XIA)，因为它是最安全和开源的以内容为中心的网络(Content-Centric Network, CCN)。CCN被未来内容网络(FCN)集团称为未来的互联网。但是，XIA没有任何减轻重放攻击的机制，因此，本文提出并实现了一种减轻这种攻击的解决方案。对几个现有的解决方案进行了分析，得出了提出的解决方案的需求。通过实现提议的协议，XIA现在能够减轻所有审查过的网络攻击。评估结果表明，与现有的解决方案相比，提出的解决方案具有更高的安全性和更低的复杂性。信息通信技术学报，Vol. 2, 151-186。doi: 10.13052 / jicts2245 - 800 x。225 c©2014 River Publishers。版权所有。[15]王晓明，王晓明等。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

J. ICT Stand.

自引率

0.00%

发文量