Reference from ESORICS proceedings

Second European Symposium on Research in Computer Security (ESORICS 92)

Policy Enforcement in Stub Autonomous Domains

Gene Tsudik

Keywords : inter-domain communication, authentication protocols, data integrity, communication security, network protocols, internetworking

Abstract : Interconnection across administrative boundaries prompts the need for comprehensive policy enforcement (i.e., access control) with respect to inter-domain packet traffic. Due to the nature of the communication services they provide, stub and transit domains require different mechanisms for policing inter-domain traffic. This paper addresses the design of a policy enforcement mechanism geared specifically towards stub domains. With the aid of some basic concepts borrowed from Visa protocol, a much more powerful mechanism is developed and analyzed. Protocol implementation and experimental results are discussed.

(Pages 229-257)

Proceedings table of contents