Visible to the public NAC: Name-based Access Control in Named Data Networking

TitleNAC: Name-based Access Control in Named Data Networking
Publication TypeConference Paper
Year of Publication2017
AuthorsZhang, Zhiyi, Yu, Yingdi, Afanasyev, Alexander, Burke, Jeff, Zhang, Lixia
Conference NameProceedings of the 4th ACM Conference on Information-Centric Networking
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-5122-5
Keywordsabe, Access Control, Human Behavior, Named Data Network Security, NDN, pubcrawl, resilience, Resiliency, Scalability

As a proposed Internet architecture, Named Data Networking must provide effective security support: data authenticity, confidentiality, and availability. This poster focuses on supporting data confidentiality via encryption. The main challenge is to provide an easy-to-use key management mechanism that ensures only authorized parties are given the access to protected data. We describe the design of name-based access control (NAC) which provides automated key management by developing systematic naming conventions for both data and cryptographic keys. We also discuss an enhanced version of NAC that leverages attribute-based encryption mechanisms (NAC-ABE) to improve the flexibility of data access control and reduce communication, storage, and processing overheads.

Citation Keyzhang_nac:_2017