Securing the Private Realm Gateway

Hammad Kabir, Jesús Llorente Santos, Raimo Kantola

    Tutkimustuotos: Artikkeli kirjassa/konferenssijulkaisussaConference article in proceedingsScientificvertaisarvioitu

    5 Sitaatiot (Scopus)

    Abstrakti

    The traditional mechanisms to traverse Network Address Translators (NAT) do not scale well to battery powered mobile-hosts: the majority of Internet users today. Private Realm Gateway (PRGW) aims to replace NATs at network edges and overcome the drawbacks of the NAT traversal mechanisms. The solution does not require changes in end-hosts or protocols, and hosts in the private realm can remain globally reachable without polling. PRGW handles incoming connections based on domain resolution of the served hosts. Incoming DNS queries create connection state in PRGW for subsequent packet forwarding. The connection state provides means for access control on the Internet-originated flows. This paper analyses the security of PRGW and introduces mechanisms that protect the served hosts and networks against Internet-borne attacks, in particular: address spoofing and Distributed Denial of Service (DDoS). The paper contributes to establish PRGW as an incrementally deployable network function that offers light-weight NAT traversal and protects the private realm against the inherent Internet threats.

    AlkuperäiskieliEnglanti
    Otsikko2016 IFIP Networking Conference (IFIP Networking) and Workshops, IFIP Networking 2016
    KustantajaIEEE
    Sivut243-251
    Sivumäärä9
    ISBN (elektroninen)9783901882838
    DOI - pysyväislinkit
    TilaJulkaistu - 21 kesäk. 2016
    OKM-julkaisutyyppiA4 Artikkeli konferenssijulkaisussa
    TapahtumaIFIP Networking - Vienna, Itävalta
    Kesto: 17 toukok. 201619 toukok. 2016

    Conference

    ConferenceIFIP Networking
    LyhennettäNETWORKING
    Maa/AlueItävalta
    KaupunkiVienna
    Ajanjakso17/05/201619/05/2016

    Sormenjälki

    Sukella tutkimusaiheisiin 'Securing the Private Realm Gateway'. Ne muodostavat yhdessä ainutlaatuisen sormenjäljen.

    Siteeraa tätä