Visible to the public A Secure Access and Accountability Framework for Provisioning Services in Named Data Networks

TitleA Secure Access and Accountability Framework for Provisioning Services in Named Data Networks
Publication TypeConference Paper
Year of Publication2021
AuthorsSultan, Nazatul H., Varadharajan, Vijay, Kumar, Chandan, Camtepe, Seyit, Nepal, Surya
Conference Name2021 40th International Symposium on Reliable Distributed Systems (SRDS)
KeywordsAccess Control, accountability, authentication, blockchain, composability, data encryption, handwriting recognition, Internet, Metrics, named data networking, network accountability, network architecture, pubcrawl, Resiliency, smart contract, smart contracts, Web and internet services
AbstractNamed Data Networking (NDN) is an emerging network architecture, which is built by keeping data as its pivotal point. The in-network cache, one of the important characteristics, makes data packets to be available from multiple locations on the Internet. Hence data access control and their enforcement mechanisms become even more critical in the NDNs. In this paper, we propose a novel encryption-based data access control scheme using Role-Based Encryption (RBE). The inheritance property of our scheme provides a natural way to achieve efficient data access control over hierarchical content. This in turn makes our scheme suitable for large scale real world content-centric applications and services such as Netflix. Further, the proposed scheme introduces an anonymous signature-based authentication mechanism to reject bogus data requests nearer to the source, thereby preventing them from entering the network. This in turn helps to mitigate better denial of service attacks. In addition, the signature mechanism supports unlinkability, which is essential to prevent leakages of individual user's access patterns. Another major feature of the proposed scheme is that it provides accountability of the Internet Service Providers (ISPs) using batch signature verification. Moreover, we have developed a transparent and secure dispute resolution and payment mechanism using smart-contract and blockchain technologies. We present a formal security analysis of our scheme to show it is provably secure against Chosen Plaintext Attacks. We also demonstrate that our scheme supports more functionalities than the existing schemes and its performance is better in terms of computation, communication and storage.
DOI10.1109/SRDS53918.2021.00025
Citation Keysultan_secure_2021