KHIP - A Scalable Protocol for Secure Multicast Routing

Abstract

We present Keyed HIP (KHIP), a secure, hierarchical multicast routing protocol. We show that other shared-tree multicast routing protocols are subject to attacks against the multicast routing infrastructure that can isolate receivers or domains or introduce loops into the structure of the multicast routing tree. KHIP changes the multicast routing model so that only trusted members are able to join the multicast tree. This protects the multicast routing against attacks that could form branches to unauthorized receivers, prevents replay attacks and limits the effects of flooding attacks. Untrusted routers that are present on the path between trusted routers cannot change the routing and can mount no denial-of-service attack stronger than simply dropping control messages. KHIP also provides a simple mechanism for distributing data encryption keys while adding little overhead to the protocol.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1999
Accession Number
ADA461705

Entities

People

  • Clay Shields
  • J.J. Garcia-Luna-Aceves

Organizations

  • University of California, Santa Cruz

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Authentication
  • Computer Network Security
  • Cryptography
  • Data Transmission
  • Denial Of Service Attack
  • Engineering
  • Explosives Initiators
  • Hierarchies
  • Identities
  • Information Operations
  • Network Protocols
  • Networks
  • Notation
  • Packet Loss
  • Routing Protocols
  • Scalability
  • Security

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.