-
1
Resource public key infrastructure RPKI: status and problems
Published 2021-03-01“…The BGP (border gateway protocol) did not fully consider security issues at the beginning of its design.With the rapid growth of the Internet, its security risks have become incrementally obvious.Academia and industry have proposed many solutions to the security issues faced by inter-domain routing, and what is really deployed is the RPKI (resource public key infrastructure) promoted by the IETF (the Internet Engineering Task Force).The development status and research advances of RPKI were surveyed, with emphasis on problems of RPKI, existing solutions, and related limitations.Moreover, latest achievements on RPKI function extension were introduced.Finally, future research directions were concluded.…”
Get full text
Article -
2
Internet naming and addressing system security technology and application analysis
Published 2017-03-01“…In order to ensure the security of domain name system and inter-domain routing system,Internet Engineering Task Force(IETF)proposed two kinds of security technology,namely domain name system security extention(DNSSEC)and resource public key infrastructure(RPKI).For the domain name system,DNSSEC added the digital signature to the original architecture of DNS using the public key infrastructure and it provided the authentication and integrity verification of DNS information,which became the anchor of domain name system security.For the inter-domain routing system,RPKI utilized the public key certificate to authenticate the ownership and usage rights of the Internet number resources and builds an Internet resource management system to enhance inter-domain routing security.Recently,the globally development of DNSSEC and RPKI were continuously expanding.In order to research the application of the two kinds of technology,Alexa top 1 million websites were taken as the data set to study and analyze the application status of DNSSEC and RPKI.…”
Get full text
Article -
3
A traffic-aware quality-of-service control mechanism for software-defined networking-based virtualized networks
Published 2017-03-01“…In this article, we propose a novel quality-of-service management mechanism, based on the single rate three color marker proposed by the Internet Engineering Task Force. This mechanism employs two new token buckets, called global token buckets, which are used to collect idle tokens from each virtual network. …”
Get full text
Article -
4
Measurement and evaluation for privacy benefits of deploying encrypted DNS protocol between recursive and authoritative servers
Published 2024-10-01“…To address this issue, the Internet Engineering Task Force (IETF) officially released RFC 9539 in February 2024, which utilized the encrypted DNS protocol to protect DNS communication privacy on the recursive-authoritative side. …”
Get full text
Article
