Summary
|
For Full-Text PDF, please login, if you are a member of IEICE, or go to Pay Per View on menu list, if you are a nonmember of IEICE. |
|
A Distributed Capability Access Control Scheme in Information-Centric Networking Jung-Hwan CHA Youn-Hee HAN Sung-Gi MIN Publication IEICE TRANSACTIONS on Communications Vol.E99-B No.5 pp.1121-1130 Publication Date: 2016/05/01 Online ISSN: 1745-1345 DOI: 10.1587/transcom.2015EBP3347 Type of Manuscript: PAPER Category: Network Keyword: Information-Centric Networking (ICN), access control, capability-based access control, privacy preservation, Full Text: PDF(1.5MB)>>
Summary: Enforcing access control policies in Information-Centric Networking (ICN) is difficult due to there being multiple copies of contents in various network locations. Traditional Access Control List (ACL)-based schemes are ill-suited for ICN, because all potential content distribution servers should have an identical access control policy or they should contact a centralized ACL server whenever their contents are accessed by consumers. To address these problems, we propose a distributed capability access control scheme for ICN. The proposed scheme is composed of an internal capability and an external capability. The former is included in the content and the latter is added to a request message sent from the consumer. The content distribution servers can validate the access right of the consumer through the internal and external capabilities without contacting access control policies. The proposed model also enhances the privacy of consumers by keeping the content name and consumer identification anonymous. The performance analysis and implementation show that the proposed scheme is feasible and more efficient than other access control schemes. | |||||
|
