Self-Routing Denial-of-Service Resistant Capabilities Using In-packet Bloom Filters

Rothenberg, Christian Esteve; Jokela, Petri; Nikander, Pekka; Särelä, Mikko; Ylitalo, Jukka

doi:10.1109/ec2nd.2009.14

Cited by 33 publications

(24 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As previously mentioned, host-oriented attacks are avoided inherently by zFilters (a scalable and fast forwarding mechanism proposed in PSIRP) since link identifiers are not globally known. The DoF attack can be further prevented by the zFormation (Rothenberg et al, 2009) mechanism. The scalable security mechanism is applied to various components of PSIRP such as the rendezvous system, routing of subscriptions, and the actual payload traffic so as to protect the whole network.…”

Section: Existing Solutionsmentioning

confidence: 98%

Information centric network: Research challenges and opportunities

Vasilakos

Simon

et al. 2015

Journal of Network and Computer Applications

209

View full text Add to dashboard Cite

Section: Existing Solutionsmentioning

confidence: 98%

Information centric network: Research challenges and opportunities

Vasilakos

Simon

et al. 2015

Journal of Network and Computer Applications

209

View full text Add to dashboard Cite

“…That is, when a link is assigned a LID, it keeps this LID forever. To overcome these limitations, the Z-formation approach is proposed in [17]. The main idea is to make zFilters expire after a certain time by periodically changing the LIDs.…”

Section: Security Enhancements To the Forwarding Planementioning

confidence: 99%

“…A Bloom filter with a maximum fill factor is called maximally filled and hence no more LIDs can be inserted. In [17] the Bloom filter is called a zFilter and we use this term throughout the paper.…”

mentioning

confidence: 99%

Selecting Bloom-filter header lengths for secure information centric networking

Alzahrani

Reed

2014

2014 9th International Symposium on Communication Systems, Networks &Amp; Digital Sign (CSNDSP)

View full text Add to dashboard Cite

Information-centric networking (ICN) is a new communication paradigm that shifts the focus from end hosts to information objects. Recent studies have shown that ICN can provide more efficient mobility support and multicast/anycast content delivery compared to traditional host-centric solutions. Nevertheless, the ICN solutions proposed so far are not very mature from the security viewpoint. In this paper, we study one of the most important Bloom-filter based ICN forwarding mechanisms and discuss its security vulnerabilities. Next, we propose some enhancements to this mechanism, which aim at increasing its resistance to brute-force attacks. Our proposed solutions are supported by simulation studies.

show abstract

“…Credentials are issued by en-route routers on flow initiation and later verified on a packet-basis. Also based on in-packet Bloom filters (iBF), the self-routing capabilities in [119] enhance the security properties of LIPSIN [85] by using iBFs as forwarding identifiers that act simultaneously as path designators, i.e. define which path the packet should take, and as capabilities, i.e.…”

Section: E Securitymentioning

confidence: 99%

Theory and Practice of Bloom Filters for Distributed Systems

Tarkoma

Rothenberg

Lagerspetz

2012

IEEE Commun. Surv. Tutorials

Self Cite

432

244

View full text Add to dashboard Cite

Abstract-Many network solutions and overlay networks utilize probabilistic techniques to reduce information processing and networking costs. This survey article presents a number of frequently used and useful probabilistic techniques. Bloom filters and their variants are of prime importance, and they are heavily used in various distributed systems. This has been reflected in recent research and many new algorithms have been proposed for distributed systems that are either directly or indirectly based on Bloom filters. In this survey, we give an overview of the basic and advanced techniques, reviewing over 20 variants and discussing their application in distributed systems, in particular for caching, peer-to-peer systems, routing and forwarding, and measurement data summarization.

show abstract

Self-Routing Denial-of-Service Resistant Capabilities Using In-packet Bloom Filters

Cited by 33 publications

References 11 publications

Information centric network: Research challenges and opportunities

Information centric network: Research challenges and opportunities

Selecting Bloom-filter header lengths for secure information centric networking

Theory and Practice of Bloom Filters for Distributed Systems

Contact Info

Product

Resources

About