Improving Security in the Fiber Distributed Data Interface (FDDI) Protocol

reportActive / Technical Report | Accession Number: ADA257546 | Open PDF

Abstract:

The arrival of high speed packet switched fiber optic LANs has allowed local area design architectures to be used for larger metropolitan area network MAN implementations. The current LAN security mechanisms used in larger and faster fiber optic LANs and MANs are often inappropriate or unacceptable for use with emerging applications. The protocol of the Fiber Distributed Data Interface FDDI standard provides a natural means for message integrity and availability verification. However, privacy in FDDI is facilitated at higher layers through a generic LAN standard. This thesis proposes a modification to the FDDI protocol implemented at the medium access control MAC sublayer, which integrates a confidentiality mechanism for data transfer. The modification provides a simple comprehensive security package to meet the high performance needs of current and emerging applications. In the proposed modification, the inherent properties of the ring are exploited using a unique Central Key Translator to distribute initial session keys. A symmetric bit stream cipher based on modulo2 addition is used for encryptiondecryption by the transmitting and receiving stations. Part of the plaintext from transmitted message frames is used as feedback to generate new session keys.

Author(s):
Jones, Benjamin E.
Author Organization(s):
NAVAL POSTGRADUATE SCHOOL MONTEREY CA
Descriptive Note:
Master's thesis
Pagination:
0073

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:
Approved For Public Release
Distribution Statement:
Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR
Identifying Numbers
Monitor Series:
NPS
 Subject Terms
Joint Capability Areas:
JCA_6_Net Centric; JCA_6.1.1_Wired Transmission; JCA_6.1.3_Switching and Routing; JCA_6.1.2_Wireless Transmission; JCA_6.1_Information Transport; JCA_8_Building Partnerships; JCA_8.1.3_Influence Adversary and Competitor Audiences; JCA_8.1_Communicate; JCA_5_Command and Control; JCA_6.4.1_Secure Information Exchange; JCA_4.6_Engineering; JCA_4.6.1_General Engineering; JCA_4.7.2_Installation Services; JCA_4.7_Base and Installations Support; JCA_6.4_Information Assurance; JCA_5.2_Understand; JCA_5.2.3_Share Knowledge and Situational Awareness; JCA_5.3_Planning; JCA_1_Force Support; JCA_1.2_Force Preparation; JCA_4.3_Maintain
Modernization Areas:
Quantum Science and Computing; Cyber
Communities of Interest:
Energy and Power Technologies
Descriptor(s):
*FIBER OPTICS, *COMMAND CONTROL COMMUNICATIONS, *COMPUTER COMMUNICATIONS, *SECURE COMMUNICATIONS, *LOCAL AREA NETWORKS, VELOCITY, VERIFICATION, PACKETS, INTERFACES, MODIFICATION, SECURITY, THESES, AVAILABILITY, FEEDBACK, STANDARDS, ACCESS, RINGS, ARCHITECTURE, TRANSMITTING, TRANSLATORS
Field(s)/Group(s):
Computer Systems, Fiber Optics and Integrated Optics, Command, Control and Communications Systems
Keyword(s):
FDDI(FIBER DISTRIBUTED DATA INTERFACE), SAFENET(SURVIVABLE ADAPTABLE FIBER OPTIC EMBEDDED NETWORK)
Report Date:
1992 Sep 01