Title :
Prophylactic, treatment and containment techniques for ensuring active network security
Author :
Murphy, Sandra ; Hayatnagarkar, Abhijit ; Krishnaswamy, Suresh ; Morrison, Wayne ; Watson, Robert
Abstract :
The flexibility and power achieved by using active networks come with their own risks - any fault in the active code or the security infrastructure now represents a fault in the network as a whole. Secure containment of active code is necessary in order to ameliorate this risk. This paper describes innovative approaches for recovering from faults in the active code as well as faults in the security infrastructure of an active network. Diverse authentication techniques that provide fail-over when some component of the security infrastructure is unavailable, and compensatory authentication techniques, both prophylactic and treatment-based, are discussed. The paper concludes by outlining an active code revocation architecture that facilitates secure containment of faulty active code within the active network.
Keywords :
computer networks; cryptography; fault tolerant computing; message authentication; risk management; system recovery; telecommunication security; active code revocation architecture; active network security; authentication techniques; compensatory authentication techniques; fail-over; fault recovery; prophylactic techniques; risk; secure containment; Access protocols; Authentication; Communication system security; Contracts; Cryptographic protocols; Cryptography; Digital signatures; Electrical capacitance tomography; Network servers; Read only memory;
Conference_Titel :
DARPA Information Survivability Conference and Exposition, 2003. Proceedings
Print_ISBN :
0-7695-1897-4
DOI :
10.1109/DISCEX.2003.1194876
