Content-Centric Networking (CCN) is a communication paradigm that emphasizescontent distribution. Named-Data Networking (NDN) is an instantiation of CCN, acandidate Future Internet Architecture. NDN supports human-readable contentnaming and router-based content caching which lends itself to efficient,secure, and scalable content distribution. Because of NDN's fundamentalrequirement that each content object must be signed by its producer,fragmentation has been considered incompatible with NDN since it precludesauthentication of individual content fragments by routers. The alternative isto perform hop-by-hop reassembly, which incurs prohibitive delays. In thispaper, we show that secure and efficient content fragmentation is both possibleand even advantageous in NDN and similar content-centric network architecturesthat involve signed content. We design a concrete technique that facilitatesefficient and secure content fragmentation in NDN, discuss its securityguarantees and assess performance. We also describe a prototype implementationand compare performance of cut-through with hop-by-hop fragmentation andreassembly.
展开▼
