Secure Name Service: A Framework for Protecting Critical Internet Resources

机译：安全名称服务：保护重要Internet资源的框架

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

We propose a novel Secure Name Service (SNS) framework for protecting critical Internet resources from unauthorized accesses, denial of service (DoS) and other attacks. The key idea is to enforce packet-origin authentication through resource virtualization and utilize dynamic name binding for protecting servers under attacks and improving service availability. Different from static network-level security schemes such as IPsec and VPN, SNS is able to dynamically bind the names of critical resources at the service level, which allows us to actively protect the service resources through a distributed filtering mechanism built on authenticated packet forwarding paths. Our prototype implementation of authenticated packet forwarding components on Pentium 4 Linux machines demonstrates that regular Linux platforms are sufficient to support SNS authenticated packet forwarding on lOOMbps or 1Gbps LANs.

机译：我们提出了一种新颖的安全名称服务（SNS）框架，用于保护重要的Internet资源免受未经授权的访问，拒绝服务（DoS）和其他攻击。关键思想是通过资源虚拟化强制执行数据包来源的身份验证，并利用动态名称绑定来保护服务器免受攻击并提高服务可用性。与静态网络级安全方案（例如IPsec和VPN）不同，SNS能够在服务级别上动态绑定关键资源的名称，这使我们能够通过基于经过身份验证的数据包转发路径构建的分布式过滤机制来主动保护服务资源。。我们在Pentium 4 Linux机器上对身份验证的数据包转发组件进行的原型实现证明，常规Linux平台足以支持100Mbps或1Gbps LAN上的SNS身份验证的数据包转发。

著录项

来源
《International IFIP-TC6 Networking Conference(NETWORKING 2004); 20040509-20040514; Athens; GR》|2004年|P.783-794|共12页
会议地点 Athens(GR);Athens(GR)
作者
Yingfei Dong; Changho Choi; Zhi-Li Zhang;
展开▼
作者单位

Dept. of Electrical Engineering University of Hawaii, Honolulu, HI 96822;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类计算机网络;
关键词

相似文献

外文文献
中文文献
专利

1. Protecting and Securing Internet-Facing Services [J] . Windows IT Pro . 2010,第6期

机译：保护和保护面向互联网的服务
2. Transparent resource sharing framework for internet services on handheld devices [J] . Wouter Haerick, Tim Wauters, Chris Develder, Annals of Telecommunications . 2010,第s7a8期

机译：手持设备上互联网服务的透明资源共享框架
3. Transparent resource sharing framework for internet services on handheld devices [J] . Wouter Haerick, Tim Wauters, Chris Develder, Annals of telecommunications . 2010,第7a8期

机译：手持设备上互联网服务的透明资源共享框架
4. Secure Name Service: A Framework for Protecting Critical Internet Resources [C] . Yingfei Dong, Changbo Choi, Zhi-Li Zhang International IFIP-TC6 Networking Conference . 2004

机译：安全名称服务：保护关键Internet资源的框架
5. Towards a Holistic Framework for Secure, Privacy-aware, and Trustworthy Internet of Things Using Resource-efficient Cryptographic Schemes [D] . Hossain, Mahmud. 2018

机译：使用资源高效的加密方案建立安全，可感知隐私和可信赖的物联网的整体框架
6. A Quality of Service-Aware Secured Communication Scheme for Internet of Things-Based Networks [O] . Fazlullah Khan, Ateeq ur Rehman, Abid Yahya, 2019

机译：基于物联网的服务质量感知安全通信方案
7. A composable framework for secure multi-modal access to Internet services from post-PC devices [O] . Steven J. Ross, Jason L. Hill, Michael Y. Chen, 2000

机译：一个可组合的框架，用于从后pC设备安全地多模式访问Internet服务
8. Connecting to the Internet Securely; Protecting Home Networks. CIAC-2324. [R] . Orvis, W. J., Krystosek, P., Smith, J. 2001

机译：安全地连接到互联网;保护家庭网络。 CIaC-2324。

Secure Name Service: A Framework for Protecting Critical Internet Resources

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅