Security and Privacy Challenges in NDN/CCN

Paolo Gasti

CS Department, University of California, Irvine


The Internet has been a huge success. In the 1970s, when core ideas underlying today's Internet were developed, telephony was the only example of effective global-scale communications. Thus, while the communication solution offered by the Internet's TCP/IP suite was unique and ground-breaking, the communication paradigm it focused on was similar to that of telephony: a point-to-point conversation between two entities. The world has changed dramatically since then and the Internet now has to accommodate information-intensive services, exabytes of content being created and consumed daily as well as a multitude of mobile devices being connected to it. To keep pace with these changes and move the Internet into the future, research efforts to design new Internet architectures have taken off within the last few years. Named-Data Networking (NDN) is one such effort that exemplifies the content-centric approach to networking. Rather than naming locations (i.e., hosts or interfaces), NDN names content, which becomes first-class entity. This allows decoupling of content from the host that might store and/or disseminate it, facilitating automatic caching and optimizing bandwidth usage. Due to its new architecture, NDN introduces new security and privacy challenges. These challenges include data privacy, anonymity, access control and authentication. This talks illustrates some of these challenges and provides some insights into the current research. Paolo Gasti is a research scholar at the Information and Computes Science (ICS) department of University of California, Irvine. He received his Ph.D. in 2010 from University of Genoa, Italy where he worked on cryptography and security in distributed systems. In 2008 he was the recipient of a Fulbright scholarship that allowed him to visit the Johns Hopkins University in Baltimore, MD. His current research is focused on secure multi-party protocols, privacy-preserving sharing of sensitive information and network security.

[Paolo Gasti]
CS Department, University of California, Irvine