Secure content delivery in information-centric networks

Misra, Satyajayant; Tourani, Reza; Majd, Nahid Ebrahimi

doi:10.1145/2491224.2491228

Cited by 86 publications

(47 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Each name is unique and the complete set of chunks creates a whole content. The chunk numbers are usually assigned using two numbering schemes: sequential numbering and random numbering [21] . In figure 11 the final part of the content name is the chunk number denoted by s such that s {001,002,003…}.…”

Section: Namingmentioning

confidence: 99%

A novel architecture of CCN for better security and applicability

Sharma¹,

Kim²

2017

Journal of the Korea Society for Simulation

View full text Add to dashboard Cite

Information Centric Networking is changing the way how content is being transmitted. The shift from IP and host based networking towards content based networking scenario is growing day by day. Many researches have been done about different frameworks of ICN. Caching is an important part of ICN and many researchers have also proposed different ways for caching the data. With caching of data in intermediate devices like the network devices as well the user devices in some cases, the issue of content security as well as the role of the content producer becomes a major concern. A modified ICN architecture based on the current Content Centric Networking (CCN) model is presented in the paper. The architecture mainly focuses on involving the content producer in content delivery in the real time. The proposed architecture provides better security aspects for the CCN architecture. Apart from security the paper will also consider the issue of applicability of CCN architecture to replace the TCP/IP based architecture. The efficiency of the proposed architecture is compared with the previous CCN architecture based on the response time for a content delivery which shows very comparable level of efficiency. The paper than analyzes different beneficial aspects of the proposed architecture over the current architecture.

show abstract

Section: Namingmentioning

confidence: 99%

A novel architecture of CCN for better security and applicability

Sharma¹,

Kim²

2017

Journal of the Korea Society for Simulation

View full text Add to dashboard Cite

show abstract

“…Our system treats the content fingerprint as a unique and global identifier to associate the related chunks privately in the encrypted fingerprint index. Besides, our system can function compatibly on top of various data encryption schemes, e.g., standard encryption (AES), access control enforced encryption, e.g., attributed-based encryption [25] and broadcast encryption [12], or even encryption for secure deduplication [26]. Those schemes can be naturally adopted in our proposed framework to enable more rich features.…”

Section: A System Overviewmentioning

confidence: 99%

“…As shown in Algorithm 2, given the sequence number of the chunk and the secure token, the request handler can immediately obtain the pyn of the targeted chunk without processing the previous chunks. Access control mechanisms: To defend against copyright infringement, our system readily supports existing one-to-many encryption schemes, e.g., proxy re-encryption (PRE) [22], attributed-based encryption (ABE) [14], [33], broadcast encryption (BE) [12], etc. For efficiency, the video chunks are still encrypted via standard symmetric encryption, while the video encryption keys are protected via PRE or ABE schemes, which can only be decrypted by authorized users.…”

Section: E Practical Considerationsmentioning

confidence: 99%

See 1 more Smart Citation

Enabling Secure and Efficient Video Delivery Through Encrypted In-Network Caching

Yuan

Wang

et al. 2016

IEEE J. Select. Areas Commun.

View full text Add to dashboard Cite

In-network content caching has been a natural trend in emerging network architectures to handle the exponential growth of video traffic. However, due to the potentially wide attacking surfaces, caching video content in the increasingly untrusted networked environment inevitably raises new concerns on user privacy exposure and unauthorized video access. Existing encrypted protocols like HTTPs either fall short of fully leveraging in-network caching or require decrypting the traffic in the middle without guaranteeing the end-to-end security.In this paper, we present a new networked system for efficient encrypted video delivery while preserving the benefits of in-network caching. As video chunks are encrypted before distribution, we first design a compact, efficient, yet encrypted video fingerprint index to empower the network with a fullycontrolled capability of locating the cached encrypted chunks for given encrypted requests. We then explain how to deploy the encrypted design in our proposed architecture, and present a secure redundancy elimination protocol to enable fast video delivery via leveraging cached encrypted chunks. We further discuss the full support of cache management, adaptive video delivery, and video access control. Rigorous analysis and prototype evaluations demonstrate the security, efficiency, and effectiveness of the design.Index Terms-Secure video delivery, encrypted in-network caching, secure redundancy elimination.

show abstract

“…However, the cryptographic scheme should be carefully chosen, as some of them may hinder the caching (like traditional symmetric key cryptographic schemes, in which a content encrypted to a given user may not be useful to any other user [13]). Different cryptographic approaches have been explored in access control solutions for ICN, such as attribute-based encryption [3], [5], [14] and broadcast encryption [4]. The idea of such solutions is to create groups of users to share keys for decrypting content, consequently optimizing caching over the network.…”

Section: A Access Control In Information-centric Networkmentioning

confidence: 99%

Optimized access control enforcement over encrypted content in information-centric networks

Mannes

Maziero

Lassance

et al. 2015

2015 IEEE Symposium on Computers and Communication (ISCC)

View full text Add to dashboard Cite

The Information-centric Network (ICN) paradigm is an important initiative toward an Internet architecture more suitable for content distribution. The change it imposes by naming, routing, and forwarding content directly on the network layer empowers the architecture with several interesting characteristics, such as in-network caching. As contents are meaningful for different users, they can be opportunistically cached and easily accessed by them, which improves content delivery and user experience. However, the fact that users can retrieve content through caches without interacting with the content provider raises security concerns regarding unauthorized access and the enforcement of access control policies. In this context, we propose an access control solution for ICN by adapting and optimizing a proxy re-encryption scheme, reducing up to 33% the processing time. The proposed solution is perfectly aligned with ICN demands, simultaneously ensuring content protection against unauthorized access of contents retrieved from unrestricted in-network caches as well as access control policies enforcement for legitimate users.

show abstract

Secure content delivery in information-centric networks

Cited by 86 publications

References 9 publications

A novel architecture of CCN for better security and applicability

A novel architecture of CCN for better security and applicability

Enabling Secure and Efficient Video Delivery Through Encrypted In-Network Caching

Optimized access control enforcement over encrypted content in information-centric networks

Contact Info

Product

Resources

About