ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Conference Paper Canary
Cited 1 time in scopus Share share facebook twitter linkedin kakaostory
Authors
Yong Yoon Shin, Sae Hyong Park, Quang Tung Thai, Sung Hyuk Byun
Issue Date
2019-09
Citation
Conference on Information-Centric Networking (ICN) 2019, pp.167-168
Language
English
Type
Conference Paper
DOI
https://dx.doi.org/10.1145/3357150.3357418
Abstract
The per-packet signature mechanism in NDN is a basic mechanism to provide in-network security. Consumers can validate provenance and integrity with the public key-based signature attached with each Data packet. However, the creation and validation processes of signature cause significant performance bottlenecks in both of consumers and producers. The embedded manifest mechanism was proposed to ease the signing overhead for streaming data producers; a signed manifest packet being composed of digests of subsequent Data packets is inserted per bundle of Data packet while each Data packet has only its digest as SignatureInfo. For a large file, the embedded manifest mechanism still needs producers to sign multiple manifest packets. The basic idea of proposed mechanism, Canary, is to enable per-segment provenance and data integrity validation with only one signing operation of producers even for a large file by exploiting the properties of Merkle tree.
KSP Keywords
Data Integrity, Data packet, Data producers, In-network, Merkle tree, Public Key, Streaming Data, network Security, performance bottleneck