Performance Implications of Securing Active Networks

Abstract

Security is an obvious risk to active networking, as increased flexibility creates numerous opportunities for mischief. The point at which this flexibility is exposed, e.g., through the loading of code into network elements, must therefore be carefully crafted to ensure security. The Secure Active Network Environment (SANE) architecture provides a secure bootstrap process resulting in a module loader /packet execution environment. As a set of nodes bootstrap, they exchange certificates to permit secure module exchange. This paper demonstrates that SANE, while exhibiting performance degradation relative to unsecured operation, is able to perform acceptably. We include measurements comparing the loading of an active ping on a secure versus an insecure infrastructure.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1998
Accession Number
AD1021010

Entities

People

  • Angelos D. Keromytis
  • D. S. Alexander
  • Jonathan M. Smith
  • William A. Arbaugh

Organizations

  • University of Pennsylvania

Tags

Communities of Interest

  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Authentication
  • Computer Networks
  • Computer Programming
  • Computer Science
  • Computers
  • Computing System Architectures
  • Denial Of Service Attack
  • Infrastructure
  • Java Programming Language
  • Kernels (Operating System)
  • Language
  • Network Architecture
  • Network Protocols
  • Network Topology
  • Operating Systems
  • Programming Languages
  • Security Protocols

Fields of Study

  • Computer science

Readers

  • Economics
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Software Engineering

Technology Areas

  • Cyber