Vault: A secure binding service

Guor Huar Lu; Changho Choi; Zhi-Li Zhang

doi:10.1109/ICNP.2006.320210

Vault: A secure binding service

Guor Huar Lu, Changho Choi, Zhi-Li Zhang

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Binding services are crucial building blocks in networks and networked applications. A binding service (e.g., the Domain Name System (DNS)) maps certain information, namely, binding keys (e.g., host names), to other information, i.e., binding values (e.g., IP addresses), and answers queries for such key-value bindings. Clearly, building secure binding services that ensure the integrity and authenticity of bindings are vital to the correct operations of many networks and networked applications. In this paper we present a novel approach for building generic secure binding services that allow arbitrary key-value bindings as (trusted) infrastructure services to support a variety of networks and networked applications. We combine the Identity-Based Encryption (IBE) crypto-mechanisms with distributed hash table (DHT) techniques to develop an innovative architecture for building scalable, robust and secure binding services. Using this architecture, we implement a prototype system called Vault and evaluate its performance both in a local testbed and on the PlanetLab.

Original language	English (US)
Title of host publication	Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006
Pages	168-177
Number of pages	10
DOIs	https://doi.org/10.1109/ICNP.2006.320210
State	Published - 2006
Event	14th IEEE International Conference on Network Protocols, ICNP 2006 - Santa Barbara, CA, United States Duration: Nov 12 2006 → Nov 15 2006

Publication series

Name	Proceedings - International Conference on Network Protocols, ICNP
ISSN (Print)	1092-1648

Other

Other	14th IEEE International Conference on Network Protocols, ICNP 2006
Country/Territory	United States
City	Santa Barbara, CA
Period	11/12/06 → 11/15/06

Access

10.1109/ICNP.2006.320210

OpenUrl availability

Full text

Cite this

Lu, GH, Choi, C & Zhang, Z-L 2006, Vault: A secure binding service. in Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006., 4110289, Proceedings - International Conference on Network Protocols, ICNP, pp. 168-177, 14th IEEE International Conference on Network Protocols, ICNP 2006, Santa Barbara, CA, United States, 11/12/06. https://doi.org/10.1109/ICNP.2006.320210

@inproceedings{989e5045d35e46958404e99ec41e0cc9,

title = "Vault: A secure binding service",

abstract = "Binding services are crucial building blocks in networks and networked applications. A binding service (e.g., the Domain Name System (DNS)) maps certain information, namely, binding keys (e.g., host names), to other information, i.e., binding values (e.g., IP addresses), and answers queries for such key-value bindings. Clearly, building secure binding services that ensure the integrity and authenticity of bindings are vital to the correct operations of many networks and networked applications. In this paper we present a novel approach for building generic secure binding services that allow arbitrary key-value bindings as (trusted) infrastructure services to support a variety of networks and networked applications. We combine the Identity-Based Encryption (IBE) crypto-mechanisms with distributed hash table (DHT) techniques to develop an innovative architecture for building scalable, robust and secure binding services. Using this architecture, we implement a prototype system called Vault and evaluate its performance both in a local testbed and on the PlanetLab.",

author = "Lu, {Guor Huar} and Changho Choi and Zhi-Li Zhang",

year = "2006",

doi = "10.1109/ICNP.2006.320210",

language = "English (US)",

isbn = "1424405939",

series = "Proceedings - International Conference on Network Protocols, ICNP",

pages = "168--177",

booktitle = "Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006",

note = "14th IEEE International Conference on Network Protocols, ICNP 2006 ; Conference date: 12-11-2006 Through 15-11-2006",

}

TY - GEN

T1 - Vault

T2 - 14th IEEE International Conference on Network Protocols, ICNP 2006

AU - Lu, Guor Huar

AU - Choi, Changho

AU - Zhang, Zhi-Li

PY - 2006

Y1 - 2006

N2 - Binding services are crucial building blocks in networks and networked applications. A binding service (e.g., the Domain Name System (DNS)) maps certain information, namely, binding keys (e.g., host names), to other information, i.e., binding values (e.g., IP addresses), and answers queries for such key-value bindings. Clearly, building secure binding services that ensure the integrity and authenticity of bindings are vital to the correct operations of many networks and networked applications. In this paper we present a novel approach for building generic secure binding services that allow arbitrary key-value bindings as (trusted) infrastructure services to support a variety of networks and networked applications. We combine the Identity-Based Encryption (IBE) crypto-mechanisms with distributed hash table (DHT) techniques to develop an innovative architecture for building scalable, robust and secure binding services. Using this architecture, we implement a prototype system called Vault and evaluate its performance both in a local testbed and on the PlanetLab.

AB - Binding services are crucial building blocks in networks and networked applications. A binding service (e.g., the Domain Name System (DNS)) maps certain information, namely, binding keys (e.g., host names), to other information, i.e., binding values (e.g., IP addresses), and answers queries for such key-value bindings. Clearly, building secure binding services that ensure the integrity and authenticity of bindings are vital to the correct operations of many networks and networked applications. In this paper we present a novel approach for building generic secure binding services that allow arbitrary key-value bindings as (trusted) infrastructure services to support a variety of networks and networked applications. We combine the Identity-Based Encryption (IBE) crypto-mechanisms with distributed hash table (DHT) techniques to develop an innovative architecture for building scalable, robust and secure binding services. Using this architecture, we implement a prototype system called Vault and evaluate its performance both in a local testbed and on the PlanetLab.

UR - http://www.scopus.com/inward/record.url?scp=46149086372&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=46149086372&partnerID=8YFLogxK

U2 - 10.1109/ICNP.2006.320210

DO - 10.1109/ICNP.2006.320210

M3 - Conference contribution

AN - SCOPUS:46149086372

SN - 1424405939

SN - 9781424405930

T3 - Proceedings - International Conference on Network Protocols, ICNP

SP - 168

EP - 177

BT - Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006

Y2 - 12 November 2006 through 15 November 2006

ER -

Vault: A secure binding service

Abstract

Publication series

Other

Access

OpenUrl availability

Other files and links

Fingerprint

Cite this