SNAPP: stateless network-authenticated path pinning

14 years 1 months ago

Download sparrow.ece.cmu.edu

This paper examines a new building block for next-generation networks: SNAPP, or Stateless Network-Authenticated Path Pinning. SNAPP-enabled routers securely embed their routing decisions in the packet headers of a stream of traffic, effectively pinning a flow's path between sender and receiver. A sender can use the pinned path (even if routes subsequently change) by including the path embedding in later packet headers. This architectural building block decouples routing from forwarding, which greatly enhances the availability of a path in the face of routing misconfigurations or malicious attacks. To demonstrate the extreme flexibility of SNAPP, we show how it can support a wide range of applications, including sender-controlled paths, expensive route lookups, sender anonymity, and sender accountability. Our analysis shows that SNAPP's overhead is low, and the system is easily implemented in hardware. We believe that SNAPP is a worthy addition to the network architect'...

Bryan Parno, Adrian Perrig, Dave Andersen

Real-time Traffic

CCS 2008 | National Science Foundation | Network-Authenticated Path Pinning | Path Pinning | Security Privacy |

claim paper

Post Info
More Details (n/a)

Added	12 Oct 2010
Updated	12 Oct 2010
Type	Conference
Year	2008
Where	CCS
Authors	Bryan Parno, Adrian Perrig, Dave Andersen

Comments (0)

Sciweavers

SNAPP: stateless network-authenticated path pinning

CCS 2008 | National Science Foundation | Network-Authenticated Path Pinning | Path Pinning | Security Privacy |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers