Date: Wed, 20 May 1998 11:21:52 -0700 (PDT) From: Julian Elischer <julian@whistle.com> To: net@FreeBSD.ORG Subject: CS 548 Seminar - Suvo Mittra (fwd) Message-ID: <Pine.BSF.3.95.980520112129.21742A-100000@current1.whistle.com>
next in thread | raw e-mail | index | archive | help
---------- Forwarded message ---------- Date: Wed, 20 May 1998 09:05:14 -0700 (PDT) From: Maria Bharwada <maria@cs.stanford.edu> To: colloq@cs.stanford.edu, phd@cs.stanford.edu Subject: CS 548 Seminar - Suvo Mittra CS 548 Distributed Systems Research Seminar, May 21, 4:15 pm Gates B01 A Flow-Based Approach to Datagram Security Suvo Mittra Department of Computer Science Stanford University There has been a great deal of interest in providing security for datagram services (also known as connectionless services) such as those supported by IP, UDP, and RPC. This interest can be seen most apparently in the recent experimentation with IP security. Unfortunately, datagram services do not mesh well with the overwhelming majority of network security protocols which implement connection-based, session services. In an effort to maintain the connectionless semantics of the datagram service, existing solutions tend to rely on long-lived public keys and host-pair keying to generate session keys which can result in serious vulnerabilities to common attacks. In this talk, I present a novel scheme for structuring datagram security based on the concept of flows. Our scheme preserves the connectionless semantics of datagram services, while using soft state to provide the per-packet processing efficiency of a session-oriented scheme. An instantiation of this protocol has been implemented for IP in the 4.4BSD kernel and I will provide a description of the implementation along with performance results. +----------------------------------------------------------------------------+ | This message was sent via the Stanford Computer Science Department | | colloquium mailing list. To be added to this list send an arbitrary | | message to colloq-subscribe@cs.stanford.edu. To be removed from this list,| | send a message to colloq-unsubscribe@cs.stanford.edu. For more information,| | send an arbitrary message to colloq-request@cs.stanford.edu. For directions| | to Stanford, check out http://www-forum.stanford.edu | +-------------------------------------------------------------------------xcl+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.980520112129.21742A-100000>