Preventing theft of quality of service on open platforms

Author

Baek, Kwang-Hyun ; Smith, Sean W.

Author_Institution

Dept. of Comput. Sci., Dartmouth Coll., Hanover, NH, USA

fYear

2005

fDate

5-9 Sept. 2005

Firstpage

246

Lastpage

257

Abstract

As multiple types of traffic converge onto one network, frequently wireless, enterprises face a tradeoff between effectiveness and security. Some types of traffic, such as voice-over-IP (VoIP), require certain quality of service (QoS) guarantees to be effective. The end client platform is in the best position to know which packets deserve this special handling. In many environments (such as universities), end users relish having control over their own machines. However, if end users administer their own machines, nothing stops dishonest ones from marking undeserving traffic for high QoS. How can an enterprise ensure that only appropriate traffic receives high QoS, while also allowing end users to retain control over their own machines? In this paper, we present the design and prototype of a solution, using SELinux, TCPA/TCG hardware, Diffserv, 802.1x, and EAP-TLS.

Keywords

DiffServ networks; Internet telephony; Linux; computer crime; quality of service; 802.1x; Diffserv; EAP-TLS; SELinux; TCPA/TCG hardware; open platforms; quality of service; theft prevention; voice-over-IP; Communication system traffic control; Delay; Diffserv networks; Educational institutions; Internet telephony; Jitter; Quality of service; Streaming media; Telecommunication traffic; Traffic control;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy for Emerging Areas in Communication Networks, 2005. Workshop of the 1st International Conference on

Print_ISBN

0-7803-9468-2

Type

conf

DOI

10.1109/SECCMW.2005.1588319

Filename

1588319