Skip Navigation
Home Research Teaching Service Publications Personal

All Publications

Publications by Topic

Publications by Year

Title: A Credential-Based Data Path Architecture for Assurable Global Networking

Authors: Tilman Wolf

Abstract: The main limitation for achieving information assurance in current data networks lies in absence of security considerations in the original Internet architecture. This shortcoming leads to the need for a new approach to achieving information assurance in networks. We propose a network architecture that uses credentials in the data path to identify, validate, monitor, and control data flows within the network. The important aspect of this approach is that credentials are tracked on the data path of the network, not just the end-systems, which implies that each and every packet can be audited. We present a credentials design that is based on Bloom filters and can achieve the desired properties to provide data path assurance.

Published: Tilman Wolf, “A credential-based data path architecture for assurable global networking,” in Proc. of the 2007 IEEE Conference on Military Communications (MILCOM), Orlando, FL, Oct. 2007.

Download: PDF

BibTeX:
@inproceedings{Wolf:CDD07,
   author    = {Wolf, Tilman},
   title     = {A Credential-Based Data Path Architecture for Assurable Global Networking},
   booktitle = {Proc. of the 2007 IEEE Conference on Military Communications (MILCOM)},
   year      = 2007,
   month     = oct,
   pages     = {},
   address   = {Orlando, FL}
}

 Copyright: © 2007 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.

© 1997-2008 Tilman Wolf. Site Policies.