Presentation is loading. Please wait.

Presentation is loading. Please wait.

An IPSec-based Host Architecture for Secure Internet Multicast R. Canetti, P-C. Cheng, F.Giraud, D. Pendarakis, J.R. Rao, P. Rohatgi, IBM Research D. Saha.

Published byJunior Lawson Modified over 9 years ago

Similar presentations

Presentation on theme: "An IPSec-based Host Architecture for Secure Internet Multicast R. Canetti, P-C. Cheng, F.Giraud, D. Pendarakis, J.R. Rao, P. Rohatgi, IBM Research D. Saha."— Presentation transcript:

1 An IPSec-based Host Architecture for Secure Internet Multicast R. Canetti, P-C. Cheng, F.Giraud, D. Pendarakis, J.R. Rao, P. Rohatgi, IBM Research D. Saha Lucent Technologies

2 Motivation In today’s Internet the need for efficient and secure multicast communication is growing. Most works on designing secure multicast mechanisms concentrate on the global architecture and design of group control entities. We present a host architecture for a member in a secure multicast group.

3 In this talk: Background on secure IP multicast: –Some applications –Security requirements –Overall design of secure IP multicast groups (as developed in the IRTF) Basic design tenets of host architecture Overview of the design Outstanding issues

4 Multicast communication: Whenever there are multiple recipients Typical applications: –File and software updates –News-feeds –Video/audio broadcasts –Virtual conferences, town-hall meetings –Multiparty video games

5 Security requirements Limiting access to group communication: –Long-term secrecy –Ephemeral access restriction Authentication: –Group –Source Anonymity Availability ( against denial of service attacks)

6 Work done at the Secure Multicast Group (SMuG) of the IRTF: Set focus on prominent scenarios and issues Develop overall architecture for secure IP multicast and research for appropriate protocols that can be standardized

7 A prominent scenario: One-to-many communication Medium to large groups (10-100K) Centralized group management No trust in group members Need source authentication, ephemeral encryption Dynamic membership

8 Global architecture for secure multicast (I): Control communication Data communication Group center Group member (sender/receiver)

9 Global architecture for secure multicast (II): Control communication Data communication Group controllers Group member (sender/receiver)

10 Host architecture: Design tenets The security mechanism should be independent of the routing method. Separate key management from data handling Use existing components when possible (In particular, IPSec) Minimize changes to OS kernel Maintain ability to plug-in different crypto algorithms

11 An IPSec-based design Motivation: –Build on solid and (soon to be) ubiquitous protocol. –Provides security in kernel, minimal load on applications. Drawbacks: –Tie the design to existing protocols –Have to deal with compatibility

12 The architecture at a glance Control API Data API Multicast Internet Key Exchange Source Authentication Module AH/ESP (IPSEC) Multicast Secu- rity Association Line (group controller) Line (group members) OS kernel App. space

13 IPSEC transforms (AH/ESP): -Data encryption with group key -Group authentication with group key -Operates on individual packets (No state across packets)

14 SAM Signing data efficiently requires: -Signing data in large chunks -Keeping state across packets Therefore, SAM is in transport layer (UDP), operates on UDP frames. Possible realizations: [Wong-Lam 98], [Rohatgi 99], [C+ 99], [Perrig et.al. 00],...

15 MSA is a database that holds: - IPSec SA for AH/ESP (group key, algorithms, group address, etc.) - Information for SAM (Signing/verification keys, algorithms, etc.) - Re-keying information for MIKE (e.g. path in “LKH tree”) - Point-to-point SA with the center Note: MSA is periodically updated by MIKE.

16 MIKE: - Invoked by API to join/leave multicast group. Join/leave interaction done via standard point-to-point secure connection (such as IPSec, SSL) with the center. - Receives key updates from controller and updates MSA -Key updates assume a “reliable multicast shim”. (Can be implemented by any general RM protocol or by a special purpose protocol.)

17 Design of MIKE Secure 1-1 connection With center Registration and de-registration Use any secure channel prot. (IPSec/TLS/…) Reliable mcast From center Periodic key updates Create MSA Update MSA Intra-host Network

18 Outstanding issues Handling multi-user hosts: Need to provide intra-host access control. –MSA must list member applications/users –Allow only members to listen to group traffic. Can do either: In kernel. (More efficient, needs kernel modification) Using daemon process (Less efficient, no kernel modification).

19 Outstanding issues MSA identification and choice of SPI: –An IPSec SA is identified by receiver address, SPI, protocol. SPI is chosen by the receiver. –Here SPI cannot be chosen by receiver. –Instead it is chosen by the group center. Replay protection field: –In IPSec, increasing counter set by sender, receiver free to ignore. –Unchanged for single sender multicast. With multiple senders receiver must ignore.

20 Validation of architecture Implemented the architecture on Red Hat Linux 5.1, using Freeswan version 0.91 implementation of IPSec. Needed a “patch” to make Fswan work with IP-multicast (class D) packets. (Seems to be a pecularity of Fswan implementation.) Architecture works smoothly, with good performance.

21 Conclusion Described an IPSec-based host architecture for secure multicast. Architecture is compliant with global architecture as developed in the IRTF. Can be installed with little or no modification to OS k ernel, with good performance.

22

Download ppt "An IPSec-based Host Architecture for Secure Internet Multicast R. Canetti, P-C. Cheng, F.Giraud, D. Pendarakis, J.R. Rao, P. Rohatgi, IBM Research D. Saha."

Similar presentations

IPSec.

IPSec.
 IPv6 Has built in security via IPsec (Internet Protocol Security). ◦ IPsec Operates at OSI layer 3 or internet layer of the Internet Protocol Suite.

 IPv6 Has built in security via IPsec (Internet Protocol Security). ◦ IPsec Operates at OSI layer 3 or internet layer of the Internet Protocol Suite.
Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
NAT TRAVERSAL FOR IPSEC Research Seminar on Datacommunications Software HIIT 09.11.2005.

NAT TRAVERSAL FOR IPSEC Research Seminar on Datacommunications Software HIIT
1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.

1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.
Henric Johnson1 Ola Flygt Växjö University, Sweden +46 470 70 86 49 IP Security.

Henric Johnson1 Ola Flygt Växjö University, Sweden IP Security.
1/32 Internet Architecture Lukas Banach Tutors: Holger Karl Christian Dannewitz Monday 26.09.2005 C. Today I³SI³HIPHI³.

1/32 Internet Architecture Lukas Banach Tutors: Holger Karl Christian Dannewitz Monday C. Today I³SI³HIPHI³.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
October 22, 2002Serguei A. Mokhov, 1 Intro to Internet-services from Security Standpoint, Part II SOEN321-Information-Systems Security.

October 22, 2002Serguei A. Mokhov, 1 Intro to Internet-services from Security Standpoint, Part II SOEN321-Information-Systems Security.
A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.

A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.
1 IP Security Outline of the session –IP Security Overview –IP Security Architecture –Key Management Based on slides by Dr. Lawrie Brown of the Australian.

1 IP Security Outline of the session –IP Security Overview –IP Security Architecture –Key Management Based on slides by Dr. Lawrie Brown of the Australian.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Implementing a Distributed Firewall

Implementing a Distributed Firewall
1 IP Multicasting. 2 IP Multicasting: Motivation Problem: Want to deliver a packet from a source to multiple receivers Applications: –Streaming of Continuous.

1 IP Multicasting. 2 IP Multicasting: Motivation Problem: Want to deliver a packet from a source to multiple receivers Applications: –Streaming of Continuous.
1 Pertemuan 11 IPSec dan SSL Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 11 IPSec dan SSL Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Chapter 6 IP Security. Outline Internetworking and Internet Protocols (Appendix 6A) IP Security Overview IP Security Architecture Authentication Header.

Chapter 6 IP Security. Outline Internetworking and Internet Protocols (Appendix 6A) IP Security Overview IP Security Architecture Authentication Header.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
CMSC 414 Computer (and Network) Security Lecture 25 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 25 Jonathan Katz.

Similar presentations

Ads by Google