ISBN-13: 9783639211917 / Angielski / Miękka / 2009 / 168 str.
IP multicast is best-known for its bandwidth conservation and lower resource utilization. Without an effective participant (i.e., receivers and sender(s)) access control, an adversary may exploit the existing multicast model. The AAA protocols can be used for multicast applications to control access to valuable information. In this book, a novel architecture is presented to manage IP multicast group access control. The Internet Group Management Protocol with Access Control (IGMP-AC) has been developed for receiver access control. The IGMP-AC, which encapsulates EAP packets, is verified using SPIN. The security properties of an EAP method, EAP Internet Key Exchange, have been validated using AVISPA. PANA that encapsulates EAP packets, has been deployed to authenticate a sender and to cryptographically authenticate each packet. The access control architecture has been extended to support inter-domain multicast groups. Moreover, the inter-domain data distribution tree has been protected using a Multicast Security Association. Finally, the usability of IGMP-AC in mobile wireless networks has been demonstrated and a secured and fast handoff procedure has been developed.
IP multicast is best-known for its bandwidth conservation and lower resource utilization. Without an effective participant (i.e., receivers and sender(s)) access control, an adversary may exploit the existing multicast model. The AAA protocols can be used for multicast applications to control access to valuable information. In this book, a novel architecture is presented to manage IP multicast group access control. The Internet Group Management Protocol with Access Control (IGMP-AC) has been developed for receiver access control. The IGMP-AC, which encapsulates EAP packets, is verified using SPIN. The security properties of an EAP method, EAP Internet Key Exchange, have been validated using AVISPA. PANA that encapsulates EAP packets, has been deployed to authenticate a sender and to cryptographically authenticate each packet. The access control architecture has been extended to support inter-domain multicast groups. Moreover, the inter-domain data distribution tree has been protected using a Multicast Security Association. Finally, the usability of IGMP-AC in mobile wireless networks has been demonstrated and a secured and fast handoff procedure has been developed.