Access-Controlled In-Network Processing of Named Data
| Autor: | Christopher Scherb, Claudio Marxer, Christian Tschudin |
|---|---|
| Rok vydání: | 2016 |
| Předmět: |
business.industry
Computer science Computation media_common.quotation_subject 020206 networking & telecommunications Access control 02 engineering and technology Encryption Set (abstract data type) Information-centric networking Network processing 020204 information systems Content centric networking 0202 electrical engineering electronic engineering information engineering business Function (engineering) Computer network media_common |
| Zdroj: | ICN |
| DOI: | 10.1145/2984356.2984366 |
| Popis: | In content-based security, encrypted content as well as wrapped access keys are made freely available by an Information Centric Network: Only those clients which are able to unwrap the encryption key can access the protected content. In this paper we extend this model to computation chains where derived data (e.g. produced by a Named Function Network) also has to comply to the content-based security approach. A central problem to solve is the synchronized on-demand publishing of encrypted results and wrapped keys as well as defining the set of consumers which are authorized to access the derived data. In this paper we introduce "content-attendant policies" and report on a running prototype that demonstrates how to enforce data owner-defined access control policies despite fully decentralized and arbitrarily long computation chains. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|