Content-Centric Networking: Security

5 likes6,046 views

PARC, a Xerox company

The document discusses content-centric networking (CCN), an innovative communication architecture focusing on the dissemination of named data rather than server-based conversations. It highlights the advantages of CCN, including optimal content distribution, enhanced security, and a simpler configuration compared to traditional models. Emphasizing the need to secure content rather than containers, the document outlines methods to ensure data validity, relevance, and provenance.

Content-based Security
Van Jacobson
Research Fellow, PARC

TTI/Vanguard at PARC
February 25, 2010

parc ®

Palo Alto Research Center

Content-centric Networking (CCN)
is a communications architecture
based on dissemination
rather than conversation.

(at the lowest level, you talk about
named data, not to some server)

CCN offers ...
• (provably) optimal content distribution
• painless mobility, wireless, virtualization, ...
• same scalability & efficiency as TCP/IP
• simple, secure, robust configuration
• an easy, incremental, evolutionary path
• much better security

Internet security sucks

and not because we’re not trying hard enough

Files, hosts and
network connections are
containers for information

• A secured perimeter is the only way to
secure containers.

• For today’s business, any realistic perimeter
encloses the planet.

Forget containers –
secure the content
Do it as the final production step to minimize
attack surface.

Ron Rivest’s SDSI has shown this works if content
is augmented so any consumer can assess
from the data:

• Validity (is data intact and complete?)
• Relevance (what question does this answer?)
• Provenance (who asserts this is an answer?)

CCN data
/nytimes.com/web/frontPage.html/v3/s0/0x3fdc96a4...

signature
0x1b048347 key

nytimes.com/web/george/desktop public key

Signed by nytimes.com/web/george

Signed by nytimes.com/web

Signed by nytimes.com

Evidentiary Trust
• Rich web of arises from signed content:
information
trustable, interconnected

Content
Content Content
Content
Content
Content
Content Content
Content
! Content
!
Content
! Content
Content!!
!
Key!!
Key !
Key !!Key
Key
!Key
Key
Key !Key
Key
Key Key
Key

• Attacks haveand be consistent with
information
to
links – get exponentially
harder as information base grows.

! Strong security is emergent & effortless.

Information on CCN is available at
www.ccnx.org
including a GPL’d open-source release
of our current research prototype.

Ad

Recommended

PPT

THE CYBER-DOMEDina Beer

PPSX

Secure your public WiFiMartin Keg

PPTX

What is Content centric networkingpraison

PPTX

Content centric networkingPhearin Sok

PPTX

Information Centric Networking and Content AddressabilityShi Junxiao

PPTX

Named data networkingharoonrashidlone

PDF

Time-Shifted TV in Content Centric Networks: the Case for Cooperative In-Netw...Gwendal Simon

PDF

Named data networking. Basic PrincipleМихаил Климарёв

PDF

Cisco 2013 Annual Security ReportKim Jensen

PDF

2600 v23 n4 (winter 2006)Felipe Prado

PPT

Network security and protocolsOnline

PDF

Security Aspects of the Information Centric Networks ModelCSCJournals

PDF

Information-centric networking and relaton to legal and regulatory issuesSAIL

PDF

2600 v24 n1 (spring 2007)Felipe Prado

PDF

CNNIC Update, by Jessica Shen [APNIC 38 / NIR SIG]APNIC

PDF

internet architecture.pdfqhawengcongo

PDF

IoT.pdfqhawengcongo

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xumancueaqlama

PDF

Security issues in content centric networks-review2anushreerocks

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xuigsbkofv9061

PDF

Communications TechnologiesSarah Jimenez

PDF

Network securitynageshkanna13

PDF

Study and analysis of mobility, security, and caching issues in CCN IJECEIAES

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xusvoulfpytx9252

PDF

ClubHack Magazine issue 26 March 2012ClubHack

PPTX

March cybersecurity powerpointCourtney King

PDF

Networking Essay ExampleWrite My Thesis Paper Thornton

DOCX

Network security Madhumithah Ilango

PPTX

Enterprise Gamification – Exploiting People by Letting Them Have Fun [PARC Fo...PARC, a Xerox company

PDF

CCNxCon2012: Welcome: Event Kickoff & Opening RemarksPARC, a Xerox company

More Related Content

Similar to Content-Centric Networking: Security (20)

PDF

Cisco 2013 Annual Security ReportKim Jensen

PDF

2600 v23 n4 (winter 2006)Felipe Prado

PPT

Network security and protocolsOnline

PDF

Security Aspects of the Information Centric Networks ModelCSCJournals

PDF

Information-centric networking and relaton to legal and regulatory issuesSAIL

PDF

2600 v24 n1 (spring 2007)Felipe Prado

PDF

CNNIC Update, by Jessica Shen [APNIC 38 / NIR SIG]APNIC

PDF

internet architecture.pdfqhawengcongo

PDF

IoT.pdfqhawengcongo

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xumancueaqlama

PDF

Security issues in content centric networks-review2anushreerocks

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xuigsbkofv9061

PDF

Communications TechnologiesSarah Jimenez

PDF

Network securitynageshkanna13

PDF

Study and analysis of mobility, security, and caching issues in CCN IJECEIAES

PDF

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xusvoulfpytx9252

PDF

ClubHack Magazine issue 26 March 2012ClubHack

PPTX

March cybersecurity powerpointCourtney King

PDF

Networking Essay ExampleWrite My Thesis Paper Thornton

DOCX

Network security Madhumithah Ilango

Cisco 2013 Annual Security ReportKim Jensen

2600 v23 n4 (winter 2006)Felipe Prado

Network security and protocolsOnline

Security Aspects of the Information Centric Networks ModelCSCJournals

Information-centric networking and relaton to legal and regulatory issuesSAIL

2600 v24 n1 (spring 2007)Felipe Prado

CNNIC Update, by Jessica Shen [APNIC 38 / NIR SIG]APNIC

internet architecture.pdfqhawengcongo

IoT.pdfqhawengcongo

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xumancueaqlama

Security issues in content centric networks-review2anushreerocks

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xuigsbkofv9061

Communications TechnologiesSarah Jimenez

Network securitynageshkanna13

Study and analysis of mobility, security, and caching issues in CCN IJECEIAES

Scalable and Secure Internet Service and Architecture 1st Edition Cheng-Zhong Xusvoulfpytx9252

ClubHack Magazine issue 26 March 2012ClubHack

March cybersecurity powerpointCourtney King

Networking Essay ExampleWrite My Thesis Paper Thornton

Network security Madhumithah Ilango

More from PARC, a Xerox company (20)

PPTX

Enterprise Gamification – Exploiting People by Letting Them Have Fun [PARC Fo...PARC, a Xerox company

PDF

CCNxCon2012: Welcome: Event Kickoff & Opening RemarksPARC, a Xerox company

PDF

CCNxCon2012: Session 1: CCN Updates & RoadmapPARC, a Xerox company

PDF

CCNxCon2012: Session 2: A Content-Centric Approach for Requesting and Dissemi...PARC, a Xerox company

PDF

CCNxCon2012: Session 2: DASH over CCN: A CCN Use-Case for a SocialMedia Base...PARC, a Xerox company

PDF

CCNxCon2012: Session 2: A Distributed Server-based Conference Control and Man...PARC, a Xerox company

PDF

CCNxCon2012: Session 2: Embedding Cloud-Centric-Networking in CCNPARC, a Xerox company

PDF

CCNxCon2012: Session 2: Network Management Framework for Future Internet Scen...PARC, a Xerox company

PDF

CCNxCon2012: Poster Session: FIB Optimizations in CCNPARC, a Xerox company

PDF

CCNxCon2012: Poster Session: Cache Coordination in a HierarchicalPARC, a Xerox company

PDF

CCNxCon2012: Poster Session: Live Streaming with Content Centric NetworkingPARC, a Xerox company

PDF

CCNxCon2012: Poster Session:On a Novel Joint Replicating and Caching Strategy...PARC, a Xerox company

PDF

CCNxCon2012: Poster Session: Parallelizing FIB Lookup in Content-Centric Netw...PARC, a Xerox company

PDF

CCNxCon2012: Poster Session: ICN Architecture Evaluation — A Discussion on CC...PARC, a Xerox company

PDF

CCNxCon2012: Poster Session: A Backward-Compatible CCNx Extension for Improve...PARC, a Xerox company

PDF

CCNxCon2012: Session 3: Content-centric VANETs: routing and transport issuesPARC, a Xerox company

PDF

CCNxCon2012: Session 3: NDN Applicability to V2V and V2R NetworksPARC, a Xerox company

PDF

CCNxCon2012: Session 3: Juxtaposition of CCN and PepysPARC, a Xerox company

PDF

CCNxCon2012: Session 4: Caesar: a Content Router for High Speed ForwardingPARC, a Xerox company

PDF

CCNxCon2012: Session 4: OSPFNPARC, a Xerox company

Enterprise Gamification – Exploiting People by Letting Them Have Fun [PARC Fo...PARC, a Xerox company

CCNxCon2012: Welcome: Event Kickoff & Opening RemarksPARC, a Xerox company

CCNxCon2012: Session 1: CCN Updates & RoadmapPARC, a Xerox company

CCNxCon2012: Session 2: A Content-Centric Approach for Requesting and Dissemi...PARC, a Xerox company

CCNxCon2012: Session 2: DASH over CCN: A CCN Use-Case for a SocialMedia Base...PARC, a Xerox company

CCNxCon2012: Session 2: A Distributed Server-based Conference Control and Man...PARC, a Xerox company

CCNxCon2012: Session 2: Embedding Cloud-Centric-Networking in CCNPARC, a Xerox company

CCNxCon2012: Session 2: Network Management Framework for Future Internet Scen...PARC, a Xerox company

CCNxCon2012: Poster Session: FIB Optimizations in CCNPARC, a Xerox company

CCNxCon2012: Poster Session: Cache Coordination in a HierarchicalPARC, a Xerox company

CCNxCon2012: Poster Session: Live Streaming with Content Centric NetworkingPARC, a Xerox company

CCNxCon2012: Poster Session:On a Novel Joint Replicating and Caching Strategy...PARC, a Xerox company

CCNxCon2012: Poster Session: Parallelizing FIB Lookup in Content-Centric Netw...PARC, a Xerox company

CCNxCon2012: Poster Session: ICN Architecture Evaluation — A Discussion on CC...PARC, a Xerox company

CCNxCon2012: Poster Session: A Backward-Compatible CCNx Extension for Improve...PARC, a Xerox company

CCNxCon2012: Session 3: Content-centric VANETs: routing and transport issuesPARC, a Xerox company

CCNxCon2012: Session 3: NDN Applicability to V2V and V2R NetworksPARC, a Xerox company

CCNxCon2012: Session 3: Juxtaposition of CCN and PepysPARC, a Xerox company

CCNxCon2012: Session 4: Caesar: a Content Router for High Speed ForwardingPARC, a Xerox company

CCNxCon2012: Session 4: OSPFNPARC, a Xerox company

Ad

Recently uploaded (20)

PDF

Windsurf Meetup Ottawa 2025-07-12 - Planning Mode at Reliza.pdfPavel Shukhman

PPTX

✨Unleashing Collaboration: Salesforce Channels & Community Power in Patna!✨SanjeetMishra29

PDF

Smart Trailers 2025 Update with History and OverviewPaul Menig

PDF

HubSpot Main Hub: A Unified Growth PlatformJaswinder Singh

PDF

Achieving Consistent and Reliable AI Code Generation - Medusa AImedusaaico

PDF

Blockchain Transactions Explained For EveryoneCIFDAQ

PDF

DevBcn - Building 10x Organizations Using Modern Productivity MetricsJustin Reock

PDF

July Patch TuesdayIvanti

PDF

Fl Studio 24.2.2 Build 4597 Crack for Windows Free Download 2025faizk77g

PDF

CIFDAQ Market Insights for July 7th 2025CIFDAQ

PDF

"AI Transformation: Directions and Challenges", Pavlo ShaternikFwdays

PDF

NewMind AI - Journal 100 Insights After The 100th IssueNewMind AI

PDF

Complete JavaScript Notes: From Basics to Advanced Concepts.pdfhaydendavispro

PPTX

UiPath Academic Alliance Educator Panels: Session 2 - Business Analyst ContentDianaGray10

PPTX

Q2 Leading a Tableau User Group - Onboardinglward7

PDF

Empower Inclusion Through Accessible Java ApplicationsAna-Maria Mihalceanu

PPT

Interview paper part 3, It is based on Interview PrepSoumyadeepGhosh39

PDF

Smart Air Quality Monitoring with Serrax AQM190 LITESERRAX TECHNOLOGIES LLP

PDF

SWEBOK Guide and Software Services Engineering EducationHironori Washizaki

PDF

Timothy Rottach - Ramp up on AI Use Cases, from Vector Search to AI Agents wi...AWS Chicago

Windsurf Meetup Ottawa 2025-07-12 - Planning Mode at Reliza.pdfPavel Shukhman

✨Unleashing Collaboration: Salesforce Channels & Community Power in Patna!✨SanjeetMishra29

Smart Trailers 2025 Update with History and OverviewPaul Menig

HubSpot Main Hub: A Unified Growth PlatformJaswinder Singh

Achieving Consistent and Reliable AI Code Generation - Medusa AImedusaaico

Blockchain Transactions Explained For EveryoneCIFDAQ

DevBcn - Building 10x Organizations Using Modern Productivity MetricsJustin Reock

July Patch TuesdayIvanti

Fl Studio 24.2.2 Build 4597 Crack for Windows Free Download 2025faizk77g

CIFDAQ Market Insights for July 7th 2025CIFDAQ

"AI Transformation: Directions and Challenges", Pavlo ShaternikFwdays

NewMind AI - Journal 100 Insights After The 100th IssueNewMind AI

Complete JavaScript Notes: From Basics to Advanced Concepts.pdfhaydendavispro

UiPath Academic Alliance Educator Panels: Session 2 - Business Analyst ContentDianaGray10

Q2 Leading a Tableau User Group - Onboardinglward7

Empower Inclusion Through Accessible Java ApplicationsAna-Maria Mihalceanu

Interview paper part 3, It is based on Interview PrepSoumyadeepGhosh39

Smart Air Quality Monitoring with Serrax AQM190 LITESERRAX TECHNOLOGIES LLP

SWEBOK Guide and Software Services Engineering EducationHironori Washizaki

Timothy Rottach - Ramp up on AI Use Cases, from Vector Search to AI Agents wi...AWS Chicago

Ad

Content-Centric Networking: Security

1. Content-based Security Van Jacobson Research Fellow, PARC TTI/Vanguard at PARC February 25, 2010 parc ® Palo Alto Research Center

2. Content-centric Networking (CCN) is a communications architecture based on dissemination rather than conversation. (at the lowest level, you talk about named data, not to some server)

3. CCN offers ... • (provably) optimal content distribution • painless mobility, wireless, virtualization, ... • same scalability & efficiency as TCP/IP • simple, secure, robust configuration • an easy, incremental, evolutionary path • much better security

4. Internet security sucks and not because we’re not trying hard enough

5. Files, hosts and network connections are containers for information • A secured perimeter is the only way to secure containers. • For today’s business, any realistic perimeter encloses the planet.

6. Forget containers – secure the content Do it as the final production step to minimize attack surface. Ron Rivest’s SDSI has shown this works if content is augmented so any consumer can assess from the data: • Validity (is data intact and complete?) • Relevance (what question does this answer?) • Provenance (who asserts this is an answer?)

7. CCN data /nytimes.com/web/frontPage.html/v3/s0/0x3fdc96a4... signature 0x1b048347 key nytimes.com/web/george/desktop public key Signed by nytimes.com/web/george Signed by nytimes.com/web Signed by nytimes.com

8. Evidentiary Trust • Rich web of arises from signed content: information trustable, interconnected Content Content Content Content Content Content Content Content Content ! Content ! Content ! Content Content!! ! Key!! Key ! Key !!Key Key !Key Key Key !Key Key Key Key Key • Attacks haveand be consistent with information to links – get exponentially harder as information base grows. ! Strong security is emergent & effortless.

9. Information on CCN is available at www.ccnx.org including a GPL’d open-source release of our current research prototype.