Untraceable Blind Packet Forwarding Using Centralized Path Control

Most of the transmitted data in military networks contains critical information that requires confidentiality: information such as tactical situations and operation commands. The military information security system consists of cryptography equipment in the network domain, systems of intrusion prevention and attack detection. However, these systems may not completely prevent mission critical nodes in the systems from being exposed to attackers. If attackers find the addresses of specific hosts or servers that have important data and attack them, it can cause serious damage. Therefore, a method for encrypting control data of packets, such as header information, is necessary for mission critical hosts and servers. One study explored a blind packet forwarding method to encrypt control data, but that method was vulnerable to attackers who guess the end node addresses. In this paper, we propose a newly devised untraceable Blind Packet Forwarding method based on the PEKS-RT algorithm. We implement it exploiting the centralized path control function of the SDN for the sake of efficiency. We show that our approach can ensure both forwarding confidentially and routing efficiently in the military network environment.