Accession Number:

ADA461705

Title:

KHIP - A Scalable Protocol for Secure Multicast Routing

Descriptive Note:

Conference paper

Corporate Author:

CALIFORNIA UNIV SANTA CRUZ DEPT OF COMPUTER ENGINEERING

Report Date:

1999-01-01

Pagination or Media Count:

13.0

Abstract:

We present Keyed HIP KHIP, a secure, hierarchical multicast routing protocol. We show that other shared-tree multicast routing protocols are subject to attacks against the multicast routing infrastructure that can isolate receivers or domains or introduce loops into the structure of the multicast routing tree. KHIP changes the multicast routing model so that only trusted members are able to join the multicast tree. This protects the multicast routing against attacks that could form branches to unauthorized receivers, prevents replay attacks and limits the effects of flooding attacks. Untrusted routers that are present on the path between trusted routers cannot change the routing and can mount no denial-of-service attack stronger than simply dropping control messages. KHIP also provides a simple mechanism for distributing data encryption keys while adding little overhead to the protocol.

Subject Categories:

  • Computer Systems Management and Standards
  • Radio Communications

Distribution Statement:

APPROVED FOR PUBLIC RELEASE