FABRID: Flexible Attestation-Based Routing for Inter-Domain Networks
dc.contributor.author
Krähenbühl, Cyrill
dc.contributor.author
Wyss, Marc
dc.contributor.author
Basin, David
dc.contributor.author
Lenders, Vincent
dc.contributor.author
Perrig, Adrian
dc.contributor.author
Strohmeier, Martin
dc.date.accessioned
2024-01-23T11:57:21Z
dc.date.available
2024-01-08T09:55:55Z
dc.date.available
2024-01-23T11:57:21Z
dc.date.issued
2023
dc.identifier.isbn
978-1-939133-37-3
en_US
dc.identifier.uri
http://hdl.handle.net/20.500.11850/650864
dc.description.abstract
In its current state, the Internet does not provide end users with transparency and control regarding on-path forwarding devices. In particular, the lack of network device information reduces the trustworthiness of the forwarding path and prevents end-user applications requiring specific router capabilities from reaching their full potential. Moreover, the inability to influence the traffic's forwarding path results in applications communicating over undesired routes, while alternative paths with more desirable properties remain unusable.
In this work, we present FABRID, a system that enables applications to forward traffic flexibly, potentially on multiple paths selected to comply with user-defined preferences, where information about forwarding devices is exposed and transparently attested by autonomous systems (ASes). The granularity of this information is chosen by each AS individually, protecting them from leaking sensitive network details, while the secrecy and authenticity of preferences embedded within the users' packets are protected through efficient cryptographic operations. We show the viability of FABRID by deploying it on a global SCION network test bed, and we demonstrate high throughput on commodity hardware.
en_US
dc.language.iso
en
en_US
dc.publisher
USENIX Association
en_US
dc.title
FABRID: Flexible Attestation-Based Routing for Inter-Domain Networks
en_US
dc.type
Conference Paper
ethz.book.title
Proceedings of the 32nd USENIX Security Symposium
en_US
ethz.pages.start
5755
en_US
ethz.pages.end
5772
en_US
ethz.event
32nd USENIX Security Symposium (USENIX Security 2023)
en_US
ethz.event.location
Anaheim, CA, USA
en_US
ethz.event.date
August 9-11, 2023
en_US
ethz.identifier.wos
ethz.publication.place
Berkeley, CA
en_US
ethz.publication.status
published
en_US
ethz.leitzahl
ETH Zürich::00002 - ETH Zürich::00012 - Lehre und Forschung::00007 - Departemente::02150 - Dep. Informatik / Dep. of Computer Science::02660 - Institut für Informationssicherheit / Institute of Information Security::03975 - Perrig, Adrian / Perrig, Adrian
en_US
ethz.leitzahl.certified
ETH Zürich::00002 - ETH Zürich::00012 - Lehre und Forschung::00007 - Departemente::02150 - Dep. Informatik / Dep. of Computer Science::02660 - Institut für Informationssicherheit / Institute of Information Security::03975 - Perrig, Adrian / Perrig, Adrian
ethz.identifier.url
https://www.usenix.org/conference/usenixsecurity23/presentation/krahenbuhl
ethz.date.deposited
2024-01-08T09:56:07Z
ethz.source
WOS
ethz.eth
yes
en_US
ethz.availability
Metadata only
en_US
ethz.rosetta.installDate
2024-01-23T11:57:22Z
ethz.rosetta.lastUpdated
2024-01-23T11:57:22Z
ethz.rosetta.versionExported
true
ethz.COinS
ctx_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.atitle=FABRID:%20Flexible%20Attestation-Based%20Routing%20for%20Inter-Domain%20Networks&rft.date=2023&rft.spage=5755&rft.epage=5772&rft.au=Kr%C3%A4henb%C3%BChl,%20Cyrill&Wyss,%20Marc&Basin,%20David&Lenders,%20Vincent&Perrig,%20Adrian&rft.isbn=978-1-939133-37-3&rft.genre=proceeding&rft.btitle=Proceedings%20of%20the%2032nd%20USENIX%20Security%20Symposium
Files in this item
| Files | Size | Format | Open in viewer |
|---|---|---|---|
|
There are no files associated with this item. |
|||
Publication type
-
Conference Paper [35127]