An Overview of Security Support in Named Data Networking

download Download PDF

NDN, Technical Report NDN-0057.
Revision 2, April 8, 2018
Zhiyi Zhang, Yingdi Yu, Haitao Zhang, Eric Newberry, Spyridon Mastorakis, Yanbiao Li, Alexander Afanasyev, and Lixia Zhang

This paper presents an overview of the security mechanisms in the Named Data Networking (NDN) architecture that have been developed over the past seven years. NDN changes the communication model from the delivery of packets between hosts identified by IP addresses, as seen in IP, to the retrieval of named and secured data packets. Consequently, NDN fundamentally changes the approach to network security. Making named data the centerpiece of the architecture leads to a new security framework that: (i) secures data directly and (ii) uses name semantics to allow applications to reason about security. In this paper, we introduce NDN’s approach to security bootstrapping, data authenticity, integrity, confidentiality, and availability.