D. S. Alexander, W. A. Arbaugh, A. D. Keromytis, and J. M. Smith, "Safety and security of programmable network infrastrucutres," IEEE Communications Magazine, vol. 36, no. 10, pp. 84--92, Oct. 1998.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....new threats are introduced in terms of network safety and security. Accordingly, considerable research effort is aimed towards the establishment of mechanisms to provide network level safety. SANE provides a layered environment for the construction of secure active network infrastructures [9]. Based on a minimal set of trust assumptions and rules, the environment securely bootstraps an embedded active network, providing authentication and naming services for active packets. As an alternative approach, the ACTIVESPEC framework formally verifies the security policies for active networks ....

D Scott Alexander, William A Arbaugh, Angelos D Keromytis, and Jonathan M Smith, "Safety and Security of Programmable Network Infrastructures," in Communications Magazine, pp. 84-- 92. IEEE, October 1998.

.... allowingargfl) W y code, par ticularO arular y code supplied by enduserS to execute in their nodes.User haveconcerfl about the e#ect of the infrELLWfl7)W) computations on the data theyar tryfl)WRR ting thrflRO the networW Despite significantener( devoted tosecurL yr)RL0E h in active networL [2] [3], 4] 5] 6] 7] 8] the issues ofsecur0 yar by no means solved. This paper attempts todescrS e thesecurW y rL0SWfl7SP ts in active networ0 and the challenges of meeting thoseroseflSE ents (Section 2) Wedescrfl eour own implementation of a solution to a subset of those challenges (Section ....

....contrfl policy of a domain, the authentication policy of a domainor thesecurL y context of a domain . addor rfl vecr00L0fl aphicprcflLL(O(fl touser data 6 0 7803 7064 3 01 10.00 (C) 2001 IEEE IEEE OPENARCH 2001 V. Related Work AndConclusi on The Switchwar pr ject s apprsfl h tosecur0 y [2] [3], 8] is two fold. Fird. their languagefor active code, called PLAN, has rflOOO(fl7P functionality to safe functions that ar defined as being available to anyone . InparPWfl7P(S the language isguar) teed toterRWSSfl andther ar no featur for interORW ket communication. Hence, many PLAN packets ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith, "Safety and security of programmable network infrastructures," IEEE Communications Magazine, issue on Programmable Networks, vol. 36, no. 10, pp. 84--92, October 1998.

....new threats are introduced in terms of network safety and security. Accordingly, considerable research e#ort is aimed towards the establishment of mechanisms to provide network level safety. Sane provides a layered environment for the construction of secure active network infrastructures [1]. Based on a minimal set of trust assumptions and rules, the environment securely bootstraps an embedded active network, 1 providing authentication and naming services for active packets. As an alternative approach, the ActiveSpec framework formally verifies the security policies for active ....

D. S. Alexander, W. A. Arbaugh, A. D. Keromytis, and J. M. Smith. Safety and Security of Programmable Network Infrastructures. In Communications Magazine, pp. 84 -- 92. IEEE, October 1998.

....machines used to run the programs and after methods, since a program s results should not be trusted unless it is run on trusted machines. We expect Active Names programs to leverage the work of other researchers in showing how to provide authentication and access control for mobile computation [2, 6]. We have implemented a prototype of such a certificatebased capability system, but we have not yet integrated this functionality into the Active Names prototype. In a production system, nodes would enforce resource limitations using technology such as Jres [15] such functionality is not ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith. Safety and Security of Programmable Network Infrastructures. IEEE Communications Magazine, 36(10):84--92, 1998.

....machines used to run the programs and after methods, since a program s results should not be trusted unless it is run on trusted machines. We expect Active Names programs to leverage the work of other researchers in showing how to provide authentication and access control for mobile computation [2, 9]. We have implemented a prototype of such a certificate based capability system, but we have not yet integrated this functionality into the Active Names prototype. 3.5 Bootstrapping Up to now, we have assumed that the name bindings were automatically available to the client and that the code to ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith. Safety and Security of Programmable Network Infrastructures. IEEE Communications Magazine, 36(10):84--92, 1998.

....by DARPA under Contract #N6600196 C 852, with additional support from the Intel Corporation, the UK Engineering and Physical Sciences Research Council, and the US National Science Foundation under Grants #ANI 98 13875, ANI 99 06855,and ANI 00 82386. our approaches to these tradeo s [AAKS98b] AAKS98a] AAKS97] AS99] Men99] the interested reader may consult those references for further background. Here, we focus on the implications of our choices. Thus, we provide a detailed exposition on the architectural decisions supporting security, and extensive and detailed measurements of ....

....language mechanisms, and appropriate software engineering and protocol design principles. The following section present a brief overview of SANE Rcane. III. Overview of SANE This section presents a brief overview of the architecture of SANE. For detailed information, please refer to [AAKS98b] AAKS98a] AAKS97] The components of SANE are illustrated in Figure 2. SANE provides security from the moment power is applied to the active node. This is accomplished using the AEGIS Secure Bootstrap Architecture which is able to detect alterations in the rmware and within the operating system. See ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith. Safety and security of programmable network infrastructures. IEEE Communications Magazine, 36(10):84-92, October 1998. special issue on Programmable Networks.

No context found.

D. S. Alexander et al., "Safety and security of programmable network infrastructures," IEEE Commun. Mag., (Special issue on Programmable Networks), vol. 36, pp. 84--92, Oct. 1998.

....and trust specification. In a (multi ) million node network, such trust management must be carried out automatically, and must be globally specified using human comprehensible policies rather than node node relationships. 5 Acknowledgements Portions of this paper are updated from [AAKS98a] and [AAKS98b] This work was supported by DARPA under Contract #N66001 96 C 852, with additional support from the Intel Corporation. ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith. Safety and Security of Programmable Network Infrastructures. IEEE Communications Magazine, 36(10):84 -- 92, 1998.

....is a wide and important area. We cannot cover the large body of related work here, but will mention some of the most directly relevant. In addition to the related works sections of the papers listed, we suggest Moore [Moo98] as a source of additional information in this area. SANE [AAKS98a, AAKS98b] is another project that is part of the SwitchWare effort at the University of Pennsylvania. It has used our implementation of alien as a basis for some development. It uses cryptographic techniques to extend notions of authentication and authorization over the network. SANE is discussed further ....

....had not been modified during transmission and that it was indeed from an authorized user. There is an implementation of SANE in alien which we have used to conduct the experiments described in the rest of this chapter. For information on SANE itself, please see the SANE references [AAKS98a, AAKS98b, AAKS98c] 6.1.2 Description of ANEP The Active Network Encapsulation Protocol (ANEP) ABG 97] is a protocol used to send switchlets across the network to active nodes. It is designed to allow the receiving node to determine to which evaluation environment (i.e. alien, ANTS [WGT98] etc. ....

D. Scott Alexander, William A. Arbaugh, Angelos D. Keromytis, and Jonathan M. Smith. Safety and security of programmable network infrastructures. IEEE Communications Magazine, 1998. to appear, special issue on Programmable Networks.

No context found.

D. S. Alexander, W. A. Arbaugh, A. D. Keromytis, and J. M. Smith, "Safety and security of programmable network infrastrucutres," IEEE Communications Magazine, vol. 36, no. 10, pp. 84--92, Oct. 1998.

No context found.

D. S. Alexander et al., "Safety and Security of Programmable Network Infrastructures," IEEE Communications, Oct. 1998, pp. 84-92.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC