SeRViTR: A framework for trust and policy management for a secure Internet and its proof-of-concept implementation

A secure network is considered to be an important goal of the Future Internet; one way this can be embodied is by having flexible and robust routing functionalities with intrinsic security mechanisms. It is also desirable to provide user-centric or service-centric routing capabilities to achieve ser...

Full description

Saved in:
Bibliographic Details
Main Authors: Xuan Liu, Wada, A., Tianyi Xing, Juluri, P., Sato, Y., Ata, S., Dijiang Huang, Medhi, D.
Format: Conference Proceeding
Language:English
Subjects:
Authentication
Internet
Monitoring
policy and trust management
Regulators
Resource management
Routing
Secure routing
virtualization
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:A secure network is considered to be an important goal of the Future Internet; one way this can be embodied is by having flexible and robust routing functionalities with intrinsic security mechanisms. It is also desirable to provide user-centric or service-centric routing capabilities to achieve service-oriented traffic controls as well as trust and policy management for security. Based on these potential needs, a flexible, scalable, and robust routing framework that enables fine-grained flow control under fixed or dynamic policies called the Virtual Trusted Routing and Provisioning Domain (VTRouPD)[11] has been recently proposed. In this paper, we present a framework called the Secure and Resilient Virtual Trust Routing (SeRViTR) framework, which is a proof-of-concept model of VTRouPD at the implementation level. SeRViTR has particular entities that are designed for policy management and trust management between different VTRouPDs to enable a secure Internet. We define the roles of each entity within the SeRViTR framework as well as the messages exchanged between them. We also discuss how policy management and trust negotiation can be achieved. Moreover, we present validation on the functional implementation of several SeRViTR components to illustrate how to create virtual domains and change of trust levels between virtual domains.
ISSN:1542-1201
2374-9709
DOI:10.1109/NOMS.2012.6212043