Security in Active Networks

Abstract

The desire for flexible networking services has given rise to the concept of "active networks." Active networks provide a general framework for designing and implementing network-embedded services, typically by means of a programmable network infrastructure. A programmable network infrastructure creates significant new challenges for securing the network infrastructure. This paper begins with an overview of active networking. It then moves to security issues, beginning with a threat model for active networking, moving through an enumeration of the challenges for system designers, and ending with a survey of approaches for meeting those challenges. The Secure Active Networking Environment (SANE) realizes many of these approaches; an implementation exists and provides acceptable performance for even the most aggressive active networking proposals such as active packets (sometimes called "capsules").We close the paper with a discussion of open problems and an attempt to prioritize them.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1999
Accession Number
AD1022053

Entities

People

  • Angelos D. Keromytis
  • D. S. Alexander
  • Jonathan M. Smith
  • William A. Arbaugh

Tags

Communities of Interest

  • Cyber
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Computations
  • Computer Network Security
  • Computer Networks
  • Computer Programming
  • Computer Science
  • Computers
  • Cryptography
  • Cybersecurity
  • Denial Of Service Attack
  • Failure Mode And Effect Analysis
  • Language
  • Network Architecture
  • Network Protocols
  • Operating Systems
  • Programming Languages
  • Security Protocols
  • Shell Scripts

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Military Mobilization and Reserve Forces Studies.
  • Systems Analysis and Design