CDAC: A Collaborative Data Access Control Scheme in Named Data Networking

Liu, Ningchun; Gao, Shuai; Hou, Ningho

doi:10.1109/hoticn48464.2019.9063206

Cited by 4 publications

(2 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These strategies are made possible by decentralizing the security operations. Check out [21], [22], [23], and [24] for further information about the utility of these models. In these articles, the development of an Access Control Model with the assistance of smart contracts, the design of a novel attributebased access control scheme via blockchain, a scheme for controlling access to data in a collaborative setting, and a trustand risk-based approach to incorporating security that makes use of behavior, status, and risk parameters to compute trust levels are each discussed in detail.…”

Section: Literature Reviewmentioning

confidence: 99%

Consortium-Based Algorithm for Access Control and Pattern Analysis Models

Pardakhe

Deshmukh

2023

Preprint

View full text Add to dashboard Cite

Inappropriate ownership transfers, weak access control, and incorrect authentication are just some of the most common external risks to public cloud installations. Cloud application developers may intentionally or unintentionally introduce these design-level issues. The difficulty that modern large-scale cloud deployments have in identifying and patching these vulnerabilities is a contributing factor to the decline in cloud QoS (quality of service) and the rise in overall system cost. Many different models of security patches have been developed by researchers and penetration testers in an effort to counteract this widespread issue. In this paper the Novel architecture is proposed that is applied to the header level to allow access to all data in incoming traffic. For the purpose of determining the most effective means of restricting access for possible internal and external attackers, this data is being processed by a context-aware rule-based engine. Moreover, it uses pattern analysis to assess the possibility of attacks like man-in-the-middle, cross-site scripting (XSS), SQL injection (SQLi), denial of service (DoS), and cross-site request forgery (CORS). By designing the network around the concept of a blockchain consortium, it is feasible to effectively exert ownership control without affecting the system's operation. This blockchain-based method stores all ownership requests in a private cloud until the content owner approves or rejects them, at which point they are transferred to the public cloud. These three properties of the model—distributed computing, immutability, and verifiability—are maintained by using a public/private chaining mechanism. The method has been evaluated across many cloud implementations, with consistent findings showing a 99.9% improvement in lowering the probability of external assaults while preserving or improving upon the efficiency of latency, throughput, and ownership transfer.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Consortium-Based Algorithm for Access Control and Pattern Analysis Models

Pardakhe

Deshmukh

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Liu et al [75] design a collaborative data access control scheme for NDN, where access control function is carried out at routers that may cache content instead of a single content producer. In this approach, the producer encrypts the content using a symmetric key.…”

Section: Cache Enforcement-based Access Controlmentioning

confidence: 99%

Access Control Mechanisms in Named Data Networks: A Comprehensive Survey

Nour,

Khelifi,

Hussain

et al. 2020

Preprint

View full text Add to dashboard Cite

Information-Centric Networking (ICN) has recently emerged as a prominent candidate for the Future Internet Architecture (FIA) that addresses existing issues with the host-centric communication model of the current TCP/IP-based Internet. Named Data Networking (NDN) is one of the most recent and active ICN architectures that provides a clean slate approach for Internet communication. NDN provides intrinsic content security where security is directly provided to the content instead of communication channel. Among other security aspects, Access Control (AC) rules specify the privileges for the entities that can access the content. In TCP/IP-based AC systems, due to the client-server communication model, the servers control which client can access a particular content. In contrast, ICN-based networks use content names to drive communication and decouple the content from its original location. This phenomenon leads to the loss of control over the content causing different challenges for the realization of efficient AC mechanisms. To date, considerable efforts have been made to develop various AC mechanisms in NDN. In this paper, we provide a detailed and comprehensive survey of the AC mechanisms in NDN. We follow a holistic approach towards AC in NDN where we first summarize the ICN paradigm, describe the changes from channel-based security to content-based security and highlight different cryptographic algorithms and security protocols in NDN. We then classify the existing AC mechanisms into two main categories: Encryption-based AC and Encryption-independent AC. Each category has different classes based on the working principle of AC (e.g., Attribute-based AC, Name-based AC, Identity-based AC, etc). Finally, we present the lessons learned from the existing AC mechanisms and identify the challenges of NDN-based AC at large, highlighting future research directions for the community. CCS Concepts: • Networks → Network design principles; Security protocols.

show abstract

Access Control Supported by Information Service Entity in Named Data Networking

Zhang

Lai

2022

2022 5th International Conference on Hot Information-Centric Networking (HotICN)

View full text Add to dashboard Cite

CDAC: A Collaborative Data Access Control Scheme in Named Data Networking

Cited by 4 publications

References 18 publications

Consortium-Based Algorithm for Access Control and Pattern Analysis Models

Consortium-Based Algorithm for Access Control and Pattern Analysis Models

Access Control Mechanisms in Named Data Networks: A Comprehensive Survey

Access Control Supported by Information Service Entity in Named Data Networking

Contact Info

Product

Resources

About