Project

General

Profile

Actions
Copy link

Task #1943

closed

Link subtype of Data

Added by Junxiao Shi about 11 years ago. Updated almost 9 years ago.

Status:
Abandoned
Priority:
Normal
Assignee:
Alex Afanasyev
Start date:
Due date:
% Done:

0%

Estimated time:
9.00 h

Description

Define Data packet, Link subtype.

The purpose is to encapsulate a Data packet with unroutable prefix within a Data packet with a routable prefix, and ensure the association between these two namespaces.

  • Outer TLV is Data
  • ContentType is Link
  • Content contains:
    • a Link object that associates the namespaces, signed by the routable prefix owner
    • an embedded Data packet that starts with the unroutable prefix, signed by the unroutable prefix owner
  • Signature of the outer TLV is weak (checksum only)
Actions
Copy link
 #1

Updated by Junxiao Shi about 11 years ago

  • Assignee set to Lixia Zhang
Actions
Copy link
 #2

Updated by Junxiao Shi about 11 years ago

  • Status changed from New to In Progress
  • Assignee changed from Lixia Zhang to Alex Afanasyev

The design is currently on named-data/memo-link repository.

Actions
Copy link
 #3

Updated by Junxiao Shi almost 11 years ago

20141119 conference call discussed this topic.

Suppose unroutable prefix /ndnsim is hosted on routable prefix /att/my-company/ndnsim-web.

There are two alternative designs for an encapsulated Data.

Design A:

Data /att/my-company/ndnsim-web/fileA
  Signature: digest only
  Content:   "/ndnsim is reachable at /att/my-company/ndnsim-web" signed by ndnsim
             Data /ndnsim/fileA signed by ndnsim

Design B:

Data /att/my-company/ndnsim-web/fileA
  Signature: digest only
  Content:   "/att/my-company/ndnsim-web hosts /ndnsim" signed by att
             Data /ndnsim/fileA signed by ndnsim

Design B requires a signature from att (the ISP) to generate a signature for what a customer wants to host.
This sounds unappealing.

However, the following attack is possible with Design A: eve can inject this packet into att's caches:

Data /att/my-company/ndnsim-web/fileA
  Signature: digest only
  Content:   "/eve is reachable at /att/my-company/ndnsim-web" signed by eve
             Data /eve/fileA signed by eve

This Data looks as good as the legitimate Data from ndnsim.
To inject this Data and poison the cache, eve needs two customer links: send Interest on the first customer link; when att routers have this Interest in the PIT, send Data on the second customer link.

On the other hand, Design B is able to prevent this attack.

In addition, Design B doesn't require att to sign every unroutable prefix that a customer wants to host.
att just needs to sign one certificate for identity /att/my-company, and that identity could be used to sign "/att/my-company/ndnsim-web hosts /ndnsim" and similar messages for other websites that is hosted under /att/my-company.

Actions
Copy link
 #4

Updated by Junxiao Shi almost 9 years ago

  • Status changed from In Progress to Abandoned

Replaced by SNAMP.

Actions
Copy link

Also available in: Atom PDF