Title :
Selective security for TLS
Author :
Portmann, Marius ; Seneviratne, Aruna
Author_Institution :
Sch. of Electr. Eng. & Telecommun., New South Wales Univ., Sydney, NSW, Australia
Abstract :
Today´s computing environments are becoming increasingly heterogeneous, mostly due to the growth of mobile computing. In this environment, application layer proxies that can adapt and tailor the content to the client´s needs and capabilities as well as to the available network resources are highly beneficial. The problem is that content adaptation proxies are generally incompatible with the notion of end-to-end security. The only generic solution to this problem is the concept of selective security. The idea is to apply security selectively only to the sensitive elements of a data stream and expose the rest to any intermediary system for potential content adaptation. None of the currently used security protocols provides an API for fine-grained control of the application of security mechanisms to a data stream. We propose a simple extension to the transport layer security protocol (TLS), which provides the application with an interface for selectively protecting elements within a data stream. We also discuss a generic application scenario that shows how the proposed extended features can be used in conjunction with content adaptation proxies.
Keywords :
application program interfaces; mobile computing; protocols; security of data; telecommunication security; API; application layer proxies; content adaptation proxies; end-to-end security; fine-grained control; mobile computing; network resources; selective security; transport layer security protocol; Australia; Computer networks; Data security; Internet; Mobile computing; Protection; Streaming media; Telecommunication computing; Transcoding; Transport protocols;
Conference_Titel :
Networks, 2001. Proceedings. Ninth IEEE International Conference on
Print_ISBN :
0-7695-1187-4
DOI :
10.1109/ICON.2001.962343
