Title :
Network Security for Client-Server Architecture Using Wiretap Codes
Author :
Bloch, Matthieu ; Narasimha, Rajesh ; McLaughlin, Steven W.
Author_Institution :
Dept. of Electr. Eng., Notre Dame Univ., Notre Dame, IN
Abstract :
We propose a method that provides information-theoretic security for client-server communications. By introducing an appropriate encoding scheme, we show how a client-server architecture under active attacks can be modeled as a binary-erasure wiretap channel. The secrecy capacity of the equivalent wiretap channel is then used as a metric to optimize the architecture and limit the impact of the attacks. Upper and lower bounds of the optimal secrecy capacity are derived and analyzed. While still mostly of theoretical interest, our analysis sheds some light on the practical design of resistant and secure client-server architectures.
Keywords :
client-server systems; codes; telecommunication security; binary-erasure wiretap channel; client-server architecture; client-server communications; encoding scheme; information-theoretic security; network security; optimal secrecy capacity; wiretap codes; Authentication; Bandwidth; Channel capacity; Communication system traffic control; Computer crime; Gain control; Information security; Network servers; Resists; Telecommunication traffic; Client-server architecture; network security; secrecy capacity; wiretap channel;
Journal_Title :
Information Forensics and Security, IEEE Transactions on
DOI :
10.1109/TIFS.2008.927688
