Paper 2019/407

Privacy-Preserving Network Path Validation

Binanda Sengupta, Yingjiu Li, Kai Bu, and Robert H. Deng

Abstract

The end-users communicating over a network path currently have no control over the path. For a better quality of service, the source node often opts for a superior (or premium) network path in order to send packets to the destination node. However, the current Internet architecture provides no assurance that the packets indeed follow the designated path. Network path validation schemes address this issue and enable each node present on a network path to validate whether each packet has followed the specific path so far. In this work, we introduce two notions of privacy -- path privacy and index privacy -- in the context of network path validation. We show that, in case a network path validation scheme does not satisfy these two properties, the scheme is vulnerable to certain practical attacks (that affect the reliability, neutrality and quality of service offered by the underlying network). To the best of our knowledge, ours is the first work that addresses privacy issues related to network path validation. We design PrivNPV, a privacy-preserving network path validation protocol, that satisfies both path privacy and index privacy. We discuss several attacks related to network path validation and how PrivNPV defends against these attacks. Finally, we discuss the practicality of PrivNPV based on relevant parameters.

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. Minor revision. ACM Transactions on Internet Technology
Keywords
Network path validationPath privacyIndex privacySource authentication
Contact author(s)
binujucse3 @ gmail com
History
2020-02-12: last of 2 revisions
2019-04-22: received
See all versions
Short URL
https://ia.cr/2019/407
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/407,
      author = {Binanda Sengupta and Yingjiu Li and Kai Bu and Robert H.  Deng},
      title = {Privacy-Preserving Network Path Validation},
      howpublished = {Cryptology ePrint Archive, Paper 2019/407},
      year = {2019},
      note = {\url{https://eprint.iacr.org/2019/407}},
      url = {https://eprint.iacr.org/2019/407}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.