Securing the Node of an Active Network
作者: Zhaoyu Liu , Roy H. Campbell , M. Dennis Mickunas
DOI: 10.1007/978-1-4419-8648-1_11
关键词:
摘要: Active networks aim to provide a software framework that enables network applications customize the processing of their communication packets. Security is critical importance success active networking. This thesis presents design and description implementation for securing node an using networking principles. The secure architecture includes operating system security API, guardian, quality protection (QoP) provisions. supports highly customized situational policies created by users dynamically. It permits nodes satisfy application-specific dynamic requirements. can fundamental base infrastructure. In addition architecture, this also analysis information flow type system. Information control concerned with right dissemination information. Secure properly restricts propagation sensitive cryptographic data beyond API untrusted environments. demonstrates ensure enforcement efficiently therefore additional assurance networks. We describe integration into two systems demonstrate its flexible innovative features present detailed performance results.
springer.com
core.ac.uk
springerlink.com参考文章(28)
Tatyana Ryutov, Clifford Neuman, Access Control Framework for Distributed Applications ,(2000)
M. D. Mickunas, Prasad Naldurg, R. H. Campbell, Zhaoyu Liu, Seung Yi, S. K. Varadarajan, Flexible Secure Multicasting in Active Networks ICDCS Workshop on Group Communications and Computations. ,(1999)
M. D Mickunas, Roy H. Campbell, Zhaoyu Liu, Secure Information Flow in Mobile Bootstrapping Process ICDCS Workshop on Wireless Networks and Mobile Computing. ,(1999)
Dexter Kozen, Efficient Code Certification Cornell University. ,(1998)
S. Merugu, S. Bhattacharjee, E. Zegura, K. Calvert, Bowman: a node OS for active networks international conference on computer communications. ,vol. 3, pp. 1127- 1136 ,(2000) , 10.1109/INFCOM.2000.832473
Tomas Sander, Christian F. Tschudin, Protecting Mobile Agents Against Malicious Hosts Mobile Agents and Security. pp. 44- 60 ,(1998) , 10.1007/3-540-68671-1_4
C. Adams, Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API) Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API). ,vol. 2479, pp. 1- 70 ,(1998)
J. Linn, Generic Security Service Application Program Interface, Version 2 RFC. ,vol. 2078, pp. 1- 85 ,(1997)
Klara Nahrstedt, Duangdao Wichadakul, QoS-aware Active Gateway for Multimedia Communication distributed multimedia systems. pp. 31- 44 ,(1999) , 10.1007/3-540-48109-5_4
S. Murphy, O. Gudmundsson, R. Mundy, B. Wellington, Retrofitting security into Internet infrastructure protocols darpa information survivability conference and exposition. ,vol. 1, pp. 3- 17 ,(2000) , 10.1109/DISCEX.2000.824937