Securing Named Data Networks

Bertino, Elisa; Nabeel, Mohamed

doi:10.1145/3205977.3205996

Cited by 7 publications

(3 citation statements)

References 57 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The ISE would play the role of the KGC, which uses the system parameters k as its input and generates the system public parameters params and the system master key s as output, as shown in Expression (3).…”

Section: System Initializationmentioning

confidence: 99%

See 1 more Smart Citation

A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking

Li,

Zheng,

2024

IET Information Security

View full text Add to dashboard Cite

Named Data Networking (NDN) is a promising network architecture that differs from the traditional TCP/IP network, as it focuses on data rather than the host. A new secure model is required to provide the data-oriented trust instead of the host-oriented trust. This paper proposes a new secure solution in the NDNs named Secure Mechanism supported by Certificateless Digital Signature and Blockchain (CLDS-B). The CLDS-B scheme employs a certificateless digital signature to guarantee the authentication and integrity of data. On the one hand, the key escrow problem has been solved to eliminate the risks of compromised private key generators; on the other hand, the data name has been bound to the public key to prevent the false public key. Moreover, the blockchain is used to manage cryptographic information. Each domain designates an information service entity to join the blockchain so that the consumer could retrieve the cryptographic information public parameter in the local domain if necessary. Furthermore, due to the decentralization of the blockchain, the CLDS-B would be robust to resist the single-node failure. Simulation results show that the CLDS-B scheme outperforms a classic NDN scheme, although it shows slightly inferior to the other secure NDN scheme. The security verification and analysis show that the CLDS-B would resist the key escrow attack. The CLDS-B would be a competitive solution in scenarios with a high-security level.

show abstract

Section: System Initializationmentioning

confidence: 99%

“…The data-centric architecture implies that NDNs have new security requirements to protect data rather than the communication channels in the IP networks. The dataoriented security mainly includes data authentication, data integrity, data confidentiality, and data privacy [3,4]. Data authentication and data integrity are our focuses.…”

Section: Introductionmentioning

confidence: 99%

A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking

Li,

Zheng,

2024

IET Information Security

View full text Add to dashboard Cite

show abstract

“…Adversaries can also take advantage of the flexibility of orchestration, internal agents, authentication failure, physical downlink control channel, confidentiality failures in the communication channel, sensor networks vulnerabilities, cloud radio access networks vulnerabilities [Jeyakumar and Rajabhushanam, 2019], C-RAN vulnerabilities [Tian et al, 2017], EAP-TLS vulnerabilities [Zhang et al, 2020b], Subscriber Identity Module (SIM) vulnerabilities [Zhao et al, 2021d], machine learning models vulnerabilities [Suomalainen et al, 2020], software-defined mobile networks vulnerabilities, named data networks vulnerabilities [Bertino and Nabeel, 2018], MEC vulnerabilities, UE vulnerabilities [Amgoune and Mazri, 2018;Mahmoud et al, 2021], D2D communication vulnerabilities [Abd-Elrahman et al, 2015a,b], System Information Block (SIB) and RRC message parameters in 5G NR, edge security flaw, key sent over an insecure channel, security flaw in NS [Martini et al, 2020;Kotulski et al, 2017;Sattar et al, 2021;Cáceres-Hidalgo and Avila-Pesantez, 2021;Olimid and Nencioni, 2020], credential theft, devices without robust security mechanisms, 5G-AKA vulnerabilities [Basin et al, 2018;Pari et al, 2019], and security flaws in NFV and SDN [Ahmad et al, 2021[Ahmad et al, , 2019[Ahmad et al, , 2018Taheribakhsh et al, 2020]. Operating Systems (OS) using insecure protocols provide excessive privileges, IoT devices may have different protocols, lack processing robustness, and fail to control sensitive data privacy.…”

Section: Item Description Item Descriptionmentioning

confidence: 99%

A Systematic Literature Mapping on the Security of 5G and Vertical Applications

Sobrinho,

Santos,

Silva

et al. 2023

Preprint

View full text Add to dashboard Cite

The deployment of 5G infrastructure is one of the main vectors for new application scenarios since it enables enhanced data bandwidth, low latency, and comprehensive signal coverage. As a result, this communication system supports various vertical applications such as the Industrial Internet of Things, smart health, smart cities, smart grids, and transportation systems. However, these applications bring new challenges to 5G networks due to specific requirements for such scenarios. Furthermore, as software-based technologies, including network slicing, software-defined networks, network function virtualization, and multi-access edge computing are a fundamental part of the 5G architecture, the network can expose these applications to new security and privacy concerns. This study summarizes the existing literature on 5G vertical applications security. We highlight vulnerabilities, threats, attacks, and solutions for 5G vertical applications. We conducted a Systematic Literature Mapping (SLM) to discuss security and privacy challenges regarding the 5G vertical applications. The SLM answered the following research question: what is the state-of-the-art regarding security in 5G networks and vertical applications? We reviewed 389 papers from 2,349 produced by searching with a curated search query and discussed vulnerabilities, threats, attacks, and solutions for 5G vertical applications. Smart cities, Industry 4.0, smart transportation, public services, smart grids, and smart health are vertical applications with relevant security concerns. We observed the need for more research since the 5G and vertical applications continuously evolve. This review also uncovers research gaps and future research directions.

show abstract