Securing Group Management in IPv6 with Cryptographically Generated Addresses

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Claude Castelluccia Articles by Gabriel Montenegro

Eighth IEEE Symposium on Computers and Communications

Kemer-Antalya, Turkey

June 30-July 03

ISBN: 0-7695-1961-X

	ASCII Text	x
	Claude Castelluccia, Gabriel Montenegro, "Securing Group Management in IPv6 with Cryptographically Generated Addresses," Computers and Communications, IEEE Symposium on, pp. 588, Eighth IEEE Symposium on Computers and Communications, 2003.

	BibTex	x
	@article{ 10.1109/ISCC.2003.1214182, author = {Claude Castelluccia and Gabriel Montenegro}, title = {Securing Group Management in IPv6 with Cryptographically Generated Addresses}, journal ={Computers and Communications, IEEE Symposium on}, volume = {0}, year = {2003}, issn = {1530-1346}, pages = {588}, doi = {http://doi.ieeecomputersociety.org/10.1109/ISCC.2003.1214182}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computers and Communications, IEEE Symposium on TI - Securing Group Management in IPv6 with Cryptographically Generated Addresses SN - 1530-1346 SP EP A1 - Claude Castelluccia, A1 - Gabriel Montenegro, PY - 2003 KW - Security KW - MLD KW - IGMP KW - Multicast KW - Anycast KW - Group Management KW - Proof-of-Membership Problem KW - DoS VL - 0 JA - Computers and Communications, IEEE Symposium on ER -

Claude Castelluccia, INRIA Rh?ne-Alpes

Gabriel Montenegro, SUN Labs

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ISCC.2003.1214182

Currently, group membership management in IP Multicast and Anycast can be abused in order to launch denial-of- service (DoS) attacks. The root of the problem is that routers cannot determine if a given host is authorized to join a group (this is sometimes referred to as the Proof-of-Membership Problem [1]). We propose a solution for IPv6 based on Group Cryptographically Generated Addresses (G-CGA). These addresses have characteristics of statistical uniqueness and cryptographic verifiability that lend themselves to severely limiting certain classes of DoS attacks. Our scheme is fully distributed and does not require any trusted third party or pre-established security association between the routers and the hosts. This is not only a huge gain in terms of scalability, reliability and overhead, but also in terms of privacy.

Index Terms:

Security, MLD, IGMP, Multicast, Anycast, Group Management, Proof-of-Membership Problem, DoS

Citation:

Claude Castelluccia, Gabriel Montenegro, "Securing Group Management in IPv6 with Cryptographically Generated Addresses," iscc, pp.588, Eighth IEEE Symposium on Computers and Communications, 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.