An Overview of Security Support in Named Data Networking

Zhiyi Zhang; Yingdi Yu; Haitao Zhang; Eric Newberry; Spyridon Mastorakis; Yanbiao Li; Alexander Afanasyev; Lixia Zhang

doi:10.1109/MCOM.2018.1701147

An Overview of Security Support in Named Data Networking

Zhiyi Zhang, Yingdi Yu, Haitao Zhang, Eric Newberry, Spyridon Mastorakis, Yanbiao Li, Alexander Afanasyev, Lixia Zhang

Research output: Contribution to journal › Review article › peer-review

49 Scopus citations

Abstract

This article presents an overview of the security mechanisms in the NDN architecture that have been developed over the past several years. NDN changes the network communication model from the delivery of packets to hosts identified by IP addresses to the retrieval of named and secured data packets. Consequently, NDN also fundamentally changes the approaches to network security. Making named data the centerpiece of the architecture leads to a new security framework that secures data directly, and uses name semantics to enable applications to reason about security and to automate the use of cryptographic keys. In this article, we introduce NDN's approaches to security bootstrapping, data authenticity, confidentiality, and availability.

Original language	English (US)
Article number	8539023
Pages (from-to)	62-68
Number of pages	7
Journal	IEEE Communications Magazine
Volume	56
Issue number	11
DOIs	https://doi.org/10.1109/MCOM.2018.1701147
State	Published - Nov 2018
Externally published	Yes

ASJC Scopus subject areas

Computer Science Applications
Computer Networks and Communications
Electrical and Electronic Engineering

Access to Document

10.1109/MCOM.2018.1701147

Fingerprint Dive into the research topics of 'An Overview of Security Support in Named Data Networking'. Together they form a unique fingerprint.

Cite this

@article{40efc3e0cd6e4e758189cf611611d90f,

title = "An Overview of Security Support in Named Data Networking",

abstract = "This article presents an overview of the security mechanisms in the NDN architecture that have been developed over the past several years. NDN changes the network communication model from the delivery of packets to hosts identified by IP addresses to the retrieval of named and secured data packets. Consequently, NDN also fundamentally changes the approaches to network security. Making named data the centerpiece of the architecture leads to a new security framework that secures data directly, and uses name semantics to enable applications to reason about security and to automate the use of cryptographic keys. In this article, we introduce NDN's approaches to security bootstrapping, data authenticity, confidentiality, and availability.",

author = "Zhiyi Zhang and Yingdi Yu and Haitao Zhang and Eric Newberry and Spyridon Mastorakis and Yanbiao Li and Alexander Afanasyev and Lixia Zhang",

note = "Funding Information: AcknowLedgment This work was partially supported by the National Science Foundation under awards CNS-1345142, CNS-1345318, CNS-1629009, and CNS-1629922. Funding Information: This work was partially supported by the National Science Foundation under awards CNS-1345142, CNS-1345318, CNS-1629009, and CNS-1629922.",

year = "2018",

month = nov,

doi = "10.1109/MCOM.2018.1701147",

language = "English (US)",

volume = "56",

pages = "62--68",

journal = "IEEE Communications Society Magazine",

issn = "0163-6804",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "11",

}

TY - JOUR

T1 - An Overview of Security Support in Named Data Networking

AU - Zhang, Zhiyi

AU - Yu, Yingdi

AU - Zhang, Haitao

AU - Newberry, Eric

AU - Mastorakis, Spyridon

AU - Li, Yanbiao

AU - Afanasyev, Alexander

AU - Zhang, Lixia

N1 - Funding Information: AcknowLedgment This work was partially supported by the National Science Foundation under awards CNS-1345142, CNS-1345318, CNS-1629009, and CNS-1629922. Funding Information: This work was partially supported by the National Science Foundation under awards CNS-1345142, CNS-1345318, CNS-1629009, and CNS-1629922.

PY - 2018/11

Y1 - 2018/11

N2 - This article presents an overview of the security mechanisms in the NDN architecture that have been developed over the past several years. NDN changes the network communication model from the delivery of packets to hosts identified by IP addresses to the retrieval of named and secured data packets. Consequently, NDN also fundamentally changes the approaches to network security. Making named data the centerpiece of the architecture leads to a new security framework that secures data directly, and uses name semantics to enable applications to reason about security and to automate the use of cryptographic keys. In this article, we introduce NDN's approaches to security bootstrapping, data authenticity, confidentiality, and availability.

AB - This article presents an overview of the security mechanisms in the NDN architecture that have been developed over the past several years. NDN changes the network communication model from the delivery of packets to hosts identified by IP addresses to the retrieval of named and secured data packets. Consequently, NDN also fundamentally changes the approaches to network security. Making named data the centerpiece of the architecture leads to a new security framework that secures data directly, and uses name semantics to enable applications to reason about security and to automate the use of cryptographic keys. In this article, we introduce NDN's approaches to security bootstrapping, data authenticity, confidentiality, and availability.

UR - http://www.scopus.com/inward/record.url?scp=85057067850&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85057067850&partnerID=8YFLogxK

U2 - 10.1109/MCOM.2018.1701147

DO - 10.1109/MCOM.2018.1701147

M3 - Review article

AN - SCOPUS:85057067850

VL - 56

SP - 62

EP - 68

JO - IEEE Communications Society Magazine

JF - IEEE Communications Society Magazine

SN - 0163-6804

IS - 11

M1 - 8539023

ER -

An Overview of Security Support in Named Data Networking

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Cite this