New DoS Defense Method Based on Strong Designated Verifier Signatures

We present a novel technique for source authentication of a packet stream in a network, which intends to give guarantees that a specific network flow really comes from a claimed origin. This mechanism, named packet level authentication (PLA), can be an essential tool for addressing Denial of Service...

ver descrição completa

Detalhes bibliográficos
Autores: de Almeida, Marcone Pereira, de Sousa Júnior, Rafael, García Villalba, Luis Javier, Kim, Tai-Hoon
Tipo de documento: artigo
Data de publicação:2018
País:España
Recursos:Universidad Complutense de Madrid (UCM)
Repositório:Docta Complutense
Idioma:inglês
OAI Identifier:oai:docta.ucm.es:20.500.14352/19223
Acesso em linha:https://hdl.handle.net/20.500.14352/19223
Access Level:Acceso aberto
Palavra-chave:Denial of Service (DoS) attacks
packet level authentication
traffic identification
digital signatures
designated verifier signatures
Inteligencia artificial (Informática)
Seguridad informática
1203.04 Inteligencia Artificial
id ES_240916f60a223b73917f6652d514b23f
oai_identifier_str oai:docta.ucm.es:20.500.14352/19223
network_acronym_str ES
network_name_str España
repository_id_str
spelling New DoS Defense Method Based on Strong Designated Verifier Signaturesde Almeida, Marcone Pereirade Sousa Júnior, RafaelGarcía Villalba, Luis JavierKim, Tai-HoonDenial of Service (DoS) attackspacket level authenticationtraffic identificationdigital signaturesdesignated verifier signaturesInteligencia artificial (Informática)Seguridad informática1203.04 Inteligencia ArtificialWe present a novel technique for source authentication of a packet stream in a network, which intends to give guarantees that a specific network flow really comes from a claimed origin. This mechanism, named packet level authentication (PLA), can be an essential tool for addressing Denial of Service (DoS) attacks. Based on designated verifier signature schemes, our proposal is an appropriate and unprecedented solution applying digital signatures for DoS prevention. Our scheme does not rely on an expensive public-key infrastructure and makes use of light cryptography machinery that is suitable in the context of the Internet of Things (IoT). We analyze our proposed scheme as a defense measure considering known DoS attacks and present a formal proof of its resilience face to eventual adversaries. Furthermore, we compare our solution to already existent strategies, highlighting its advantages and drawbacks.MDPIUniversidad Complutense de Madrid20182018-01-0120182018-01-01journal articlehttp://purl.org/coar/resource_type/c_6501info:eu-repo/semantics/articleapplication/pdfhttps://hdl.handle.net/20.500.14352/19223reponame:Docta Complutenseinstname:Universidad Complutense de Madrid (UCM)Inglésengopen accesshttp://purl.org/coar/access_right/c_abf2Atribución 3.0 Españahttps://creativecommons.org/licenses/by/3.0/es/info:eu-repo/semantics/openAccessoai:docta.ucm.es:20.500.14352/192232026-06-02T12:44:21Z
dc.title.none.fl_str_mv New DoS Defense Method Based on Strong Designated Verifier Signatures
title New DoS Defense Method Based on Strong Designated Verifier Signatures
spellingShingle New DoS Defense Method Based on Strong Designated Verifier Signatures
de Almeida, Marcone Pereira
Denial of Service (DoS) attacks
packet level authentication
traffic identification
digital signatures
designated verifier signatures
Inteligencia artificial (Informática)
Seguridad informática
1203.04 Inteligencia Artificial
title_short New DoS Defense Method Based on Strong Designated Verifier Signatures
title_full New DoS Defense Method Based on Strong Designated Verifier Signatures
title_fullStr New DoS Defense Method Based on Strong Designated Verifier Signatures
title_full_unstemmed New DoS Defense Method Based on Strong Designated Verifier Signatures
title_sort New DoS Defense Method Based on Strong Designated Verifier Signatures
dc.creator.none.fl_str_mv de Almeida, Marcone Pereira
de Sousa Júnior, Rafael
García Villalba, Luis Javier
Kim, Tai-Hoon
author de Almeida, Marcone Pereira
author_facet de Almeida, Marcone Pereira
de Sousa Júnior, Rafael
García Villalba, Luis Javier
Kim, Tai-Hoon
author_role author
author2 de Sousa Júnior, Rafael
García Villalba, Luis Javier
Kim, Tai-Hoon
author2_role author
author
author
dc.contributor.none.fl_str_mv Universidad Complutense de Madrid
dc.subject.none.fl_str_mv Denial of Service (DoS) attacks
packet level authentication
traffic identification
digital signatures
designated verifier signatures
Inteligencia artificial (Informática)
Seguridad informática
1203.04 Inteligencia Artificial
topic Denial of Service (DoS) attacks
packet level authentication
traffic identification
digital signatures
designated verifier signatures
Inteligencia artificial (Informática)
Seguridad informática
1203.04 Inteligencia Artificial
description We present a novel technique for source authentication of a packet stream in a network, which intends to give guarantees that a specific network flow really comes from a claimed origin. This mechanism, named packet level authentication (PLA), can be an essential tool for addressing Denial of Service (DoS) attacks. Based on designated verifier signature schemes, our proposal is an appropriate and unprecedented solution applying digital signatures for DoS prevention. Our scheme does not rely on an expensive public-key infrastructure and makes use of light cryptography machinery that is suitable in the context of the Internet of Things (IoT). We analyze our proposed scheme as a defense measure considering known DoS attacks and present a formal proof of its resilience face to eventual adversaries. Furthermore, we compare our solution to already existent strategies, highlighting its advantages and drawbacks.
publishDate 2018
dc.date.none.fl_str_mv 2018
2018-01-01
2018
2018-01-01
dc.type.none.fl_str_mv journal article
http://purl.org/coar/resource_type/c_6501
dc.type.openaire.fl_str_mv info:eu-repo/semantics/article
format article
dc.identifier.none.fl_str_mv https://hdl.handle.net/20.500.14352/19223
url https://hdl.handle.net/20.500.14352/19223
dc.language.none.fl_str_mv Inglés
eng
language_invalid_str_mv Inglés
language eng
dc.rights.none.fl_str_mv open access
http://purl.org/coar/access_right/c_abf2
Atribución 3.0 España
https://creativecommons.org/licenses/by/3.0/es/
dc.rights.openaire.fl_str_mv info:eu-repo/semantics/openAccess
rights_invalid_str_mv open access
http://purl.org/coar/access_right/c_abf2
Atribución 3.0 España
https://creativecommons.org/licenses/by/3.0/es/
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv MDPI
publisher.none.fl_str_mv MDPI
dc.source.none.fl_str_mv reponame:Docta Complutense
instname:Universidad Complutense de Madrid (UCM)
instname_str Universidad Complutense de Madrid (UCM)
reponame_str Docta Complutense
collection Docta Complutense
repository.name.fl_str_mv
repository.mail.fl_str_mv
_version_ 1869404675952869376
score 15,300719