DocumentCode
3488008
Title
Multicore-based auto-scaling SEcure Neighbor Discovery for Windows operating systems
Author
Rafiee, Hosnieh ; AlSa´deh, Ahmad ; Meinel, Christoph
Author_Institution
Hasso-Plattner-Inst., Univ. of Potsdam, Potsdam, Germany
fYear
2012
fDate
1-3 Feb. 2012
Firstpage
269
Lastpage
274
Abstract
SEcure Neighbor Discovery (SEND) is proposed to counter IPv6 Neighbor Discovery Protocol (NDP) security threats. However, SEND is compute-intensive. Fulfilling Hash2 condition in Cryptographically Generated Addresses (CGA) is the main heavy part of SEND. Unfortunately, CGA computation cannot see significant speed improvement when it runs on multicore machine because CGA generation algorithm is sequential. In this paper, we propose a multicore-based high performance SEND implementation for Windows families to speed up SEND computations. The proposed approach automatically detects the number of processors available on a machine and creates equivalent number of working threads to compute Hash2 condition. The parallelization mechanism is implemented to assign CGA computation to all the cores. When one thread satisfies CGA Hash2 condition, the others stop. With the parallel approach, the speedup time has been increased extremely by increasing the number of cores in the computing device. Besides the parallelization, we extend SEND implementation to generate the key pair for CGA algorithm on-the-fly to enhance the security and to protect the privacy.
Keywords
cryptographic protocols; data privacy; multiprocessing systems; operating systems (computers); parallel processing; CGA Hash2 condition; CGA generation algorithm; IPv6 neighbor discovery protocol; SEND protocol; Windows families; Windows operating systems; cryptographically generated addresses; multicore machine; multicore-based auto-scaling secure neighbor discovery; parallelization mechanism; privacy protection; security enhancement; Computers; Multicore processing; Program processors; Protocols; Public key; Cryptographically Generated Addresses (CGA); IPv6 security and protection; Neighbor Discovery Protocol (NDP); SEND implementation; parallel computing;
fLanguage
English
Publisher
ieee
Conference_Titel
Information Networking (ICOIN), 2012 International Conference on
Conference_Location
Bali
ISSN
1976-7684
Print_ISBN
978-1-4673-0251-7
Type
conf
DOI
10.1109/ICOIN.2012.6164390
Filename
6164390
Link To Document