A Unified Approach to Intra-Domain Security
- ORNL
- Indiana University
While a variety of mechanisms have been developed for securing individual intra-domain protocols, none address the issue in a holistic manner. We develop a unified framework to secure prominent networking protocols within a single domain. We begin with a secure version of the DHCP protocol, which has the additional feature of providing each host with a certificate. We then leverage these certificates to secure ARP, prevent spoofing within the domain, and secure SSH and VPN connections between the domain and hosts which have previously interacted with it locally. In doing so, we also develop an incrementally deployable public key infrastructure which can later be leveraged to support inter-domain authentication.
- Research Organization:
- Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States). National Center for Computational Sciences (NCCS)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- DE-AC05-00OR22725
- OSTI ID:
- 963924
- Resource Relation:
- Conference: International Symposium on Secure Computing (SecureCom-09), Vancouver, Canada, 20090829, 20090831
- Country of Publication:
- United States
- Language:
- English
Similar Records
Authentication Protocol for ICS without Encryption
Cybersecurity Certification Recommendations for Interconnected Grid Edge Devices and Inverter Based Resources