Software-defined security controller-based group management and end-to-end security management

This paper proposes group management and end-to-end security management based on the horizontal model suitable for group based private systems. The software-defined security controller (SDSC), which is located at the center of the control layer, functions as software-defined networking controller re...

Full description

Saved in:
Bibliographic Details
Main Authors: Festijo, Enrique, Jung, Younchan, Peradilla, Marnel
Format: text
Published: Animo Repository 2018
Subjects:
Online Access:https://animorepository.dlsu.edu.ph/faculty_research/3413
https://animorepository.dlsu.edu.ph/context/faculty_research/article/4415/type/native/viewcontent/s12652_018_0678_6.html
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: De La Salle University
id oai:animorepository.dlsu.edu.ph:faculty_research-4415
record_format eprints
spelling oai:animorepository.dlsu.edu.ph:faculty_research-44152021-09-08T01:08:48Z Software-defined security controller-based group management and end-to-end security management Festijo, Enrique Jung, Younchan Peradilla, Marnel This paper proposes group management and end-to-end security management based on the horizontal model suitable for group based private systems. The software-defined security controller (SDSC), which is located at the center of the control layer, functions as software-defined networking controller responsible for group management and end-to-end security management. The proposed group key rekeying feature uses the unicast method for distributing the signaling messages among the group members which belong to various heterogeneous networks. This network independent and centralized architecture for group key rekeying is advantageous for the dynamic members to constitute secure group. While the group key management is responsible for securing control signaling messages within the group members, the purpose of the end-to-end security management is to protect the end-to-end data traffic within them. To achieve end-to-end security, this paper uses packet key scheme that collaborates with the group key management. Then, the members of the group-based private system are allowed to receive packet key based security service for their end-to-end data traffic. The packet key scheme is based on the idea that the very short lifetime of the packet key with a relatively small key size can provide high level of security and satisfy the latency requirements especially for real-time applications. Because SDSC handles most of the burden in terms of communication and computational load, the workload for group key and end-to-end security management are dramatically reduced from each group member view point. The additional feature of subgroup key management enables each group member to sustain less workload, which solves the scalability issue for the big size private group. © 2018 Springer-Verlag GmbH Germany, part of Springer Nature 2018-01-10T08:00:00Z text text/html https://animorepository.dlsu.edu.ph/faculty_research/3413 info:doi/10.1007/s12652-018-0678-6 https://animorepository.dlsu.edu.ph/context/faculty_research/article/4415/type/native/viewcontent/s12652_018_0678_6.html Faculty Research Work Animo Repository Public key cryptography Public key infrastructure (Computer security) Computer Sciences
institution De La Salle University
building De La Salle University Library
continent Asia
country Philippines
Philippines
content_provider De La Salle University Library
collection DLSU Institutional Repository
topic Public key cryptography
Public key infrastructure (Computer security)
Computer Sciences
spellingShingle Public key cryptography
Public key infrastructure (Computer security)
Computer Sciences
Festijo, Enrique
Jung, Younchan
Peradilla, Marnel
Software-defined security controller-based group management and end-to-end security management
description This paper proposes group management and end-to-end security management based on the horizontal model suitable for group based private systems. The software-defined security controller (SDSC), which is located at the center of the control layer, functions as software-defined networking controller responsible for group management and end-to-end security management. The proposed group key rekeying feature uses the unicast method for distributing the signaling messages among the group members which belong to various heterogeneous networks. This network independent and centralized architecture for group key rekeying is advantageous for the dynamic members to constitute secure group. While the group key management is responsible for securing control signaling messages within the group members, the purpose of the end-to-end security management is to protect the end-to-end data traffic within them. To achieve end-to-end security, this paper uses packet key scheme that collaborates with the group key management. Then, the members of the group-based private system are allowed to receive packet key based security service for their end-to-end data traffic. The packet key scheme is based on the idea that the very short lifetime of the packet key with a relatively small key size can provide high level of security and satisfy the latency requirements especially for real-time applications. Because SDSC handles most of the burden in terms of communication and computational load, the workload for group key and end-to-end security management are dramatically reduced from each group member view point. The additional feature of subgroup key management enables each group member to sustain less workload, which solves the scalability issue for the big size private group. © 2018 Springer-Verlag GmbH Germany, part of Springer Nature
format text
author Festijo, Enrique
Jung, Younchan
Peradilla, Marnel
author_facet Festijo, Enrique
Jung, Younchan
Peradilla, Marnel
author_sort Festijo, Enrique
title Software-defined security controller-based group management and end-to-end security management
title_short Software-defined security controller-based group management and end-to-end security management
title_full Software-defined security controller-based group management and end-to-end security management
title_fullStr Software-defined security controller-based group management and end-to-end security management
title_full_unstemmed Software-defined security controller-based group management and end-to-end security management
title_sort software-defined security controller-based group management and end-to-end security management
publisher Animo Repository
publishDate 2018
url https://animorepository.dlsu.edu.ph/faculty_research/3413
https://animorepository.dlsu.edu.ph/context/faculty_research/article/4415/type/native/viewcontent/s12652_018_0678_6.html
_version_ 1767195900866723840