Skip to main content
SpringerLink
Log in

Research on Security Management in Active Network Node Operating Systems

  • Conference paper
Web Information Systems and Mining (WISM 2012)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 7529))

Included in the following conference series:

  • 2682 Accesses

Abstract

This paper analyzes the security requirements and problems with which active nodes are confronted, and proposes a general security management subsystem in Active Network NodeOS. The subsystem implements through four functions: resource management, hop-by-hop authentication, credential management and security policy management. Resource management avoids excessive use of resources by constraining the maximum available resource quantity of each application. Hop-by-hop authentication is realized by adding hop-by-hop integrity option to ANEP header, which accomplishes the previous hop authentication and the hop-by-hop integrity checking. The function of credential management is to obtain the credential, authenticate the validity of the credential, and make origin authentication and end-to-end integrity checking by using the principal’s public key carried in the credential. Security policy management is realized by embedding a reformed KeyNote Trust Management system into NodeOS kernel to complete access control to node resource.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. DARPA AN Architecture Working Group. Architectural Framework for Active Networks (2000)

    Google Scholar 

  2. DARPA An Security Working Group. Security Architecture for Active Nets (2001)

    Google Scholar 

  3. Murphy, S., et al.: Strong Security for Active Networks. In: IEEE OPENARCH (2001)

    Google Scholar 

  4. Tullmann, P., et al.: Janos: A Java-oriented OS for Active Network Nodes. IEEE Journal on Selected Areas in Communications 19(3), 501–510 (2001)

    Article  Google Scholar 

  5. Alexander, D., et al.: A Secure Active Network Environment Architecture: Realization in SwitchWare. IEEE Network 12(3), 37–45 (1998)

    Article  Google Scholar 

  6. Dandekar, H., et al.: AMP: Experiences with Building an Exokernel-Based Platform for Active Networking. In: Proceedings of the DARPA Active Networks Conference and Exposition (2002)

    Google Scholar 

  7. IETF Active Networks Group. Active Network Encapsulation Protocol (ANEP). RFC Draft (1997)

    Google Scholar 

  8. IETF Network Working Group. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 3280 (2002)

    Google Scholar 

  9. Blaze, M., et al.: Decentralized Trust Management. In: Proceedings of the 17th IEEE Symposium on Security and Privacy, Oakland, USA, pp. 164–173 (1996)

    Google Scholar 

  10. IETF Network Working Group. The KeyNote Trust-Management System Version 2. RFC 2704 (1999)

    Google Scholar 

  11. http://www.cis.upenn.edu/~keynote/code/keynote.tar.gz

Download references

Author information

Authors and Affiliations

  1. School of Mathematics and Computer Science, Northwest University for Nationalities, Lanzhou, 730030, China

    Yongchun Cao, Yabin Shao & Zhengqi Cai

Authors
  1. Yongchun Cao
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yabin Shao
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Zhengqi Cai
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Deaprtment of Business Administration, Caritas Institute of Higher Education, 18 Chui Ling Road, Tseung Kwan O, Hong Kong, China

    Fu Lee Wang

  2. School of Computer and Information Engineering, Shanghai University of Electric Power, 200090, Shanghai, China

    Jingsheng Lei

  3. Department of Computer and Inforamtion Science, University of Macau, Av. Padre Tomás Pereira, Taipa, Macau, China

    Zhiguo Gong

  4. School of Computer, Shanghai University, 200444, Shanghai, China

    Xiangfeng Luo

Rights and permissions

Reprints and permissions

Copyright information

© 2012 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Cao, Y., Shao, Y., Cai, Z. (2012). Research on Security Management in Active Network Node Operating Systems. In: Wang, F.L., Lei, J., Gong, Z., Luo, X. (eds) Web Information Systems and Mining. WISM 2012. Lecture Notes in Computer Science, vol 7529. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-33469-6_35

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-33469-6_35

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-33468-9

  • Online ISBN: 978-3-642-33469-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation