TY - GEN
T1 - An SDN-Enabled Elliptic-Curve Diffie-Hellman Key Exchange Towards Secure P2P Networking
AU - Fan, Wenjun
AU - Wu, Siyuan
AU - Chen, Hao
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024/2/28
Y1 - 2024/2/28
N2 - The network connections based on the Transmission Control Protocol (TCP) are reliable but lack security protection. The conventional Transport Layer Security (TLS) protocol adds an extra layer over the transport layer which enables payload encryption of the TCP segment. However, TLS relies on certificate authority (CA) to distribute the public key (for preventing Man-in-the-Middle attack), which involves nonnegligible overhead and constrains its use, e.g., TLS is not appropriate to peer-to-peer (P2P) networks due to the huge communication overhead. Therefore, this paper proposes a novel key distribution mechanism towards securing the TCP connection on P2P network. The mechanism applies an SDN-enabled approach to facilitate the Elliptic-curve Diffie-Hellman key exchange. With this mechanism, the key exchange can prevent Man-in-the-Middle attack with minimal communication overhead. The experimental results built on the prototype show that this approach is efficient.
AB - The network connections based on the Transmission Control Protocol (TCP) are reliable but lack security protection. The conventional Transport Layer Security (TLS) protocol adds an extra layer over the transport layer which enables payload encryption of the TCP segment. However, TLS relies on certificate authority (CA) to distribute the public key (for preventing Man-in-the-Middle attack), which involves nonnegligible overhead and constrains its use, e.g., TLS is not appropriate to peer-to-peer (P2P) networks due to the huge communication overhead. Therefore, this paper proposes a novel key distribution mechanism towards securing the TCP connection on P2P network. The mechanism applies an SDN-enabled approach to facilitate the Elliptic-curve Diffie-Hellman key exchange. With this mechanism, the key exchange can prevent Man-in-the-Middle attack with minimal communication overhead. The experimental results built on the prototype show that this approach is efficient.
KW - Elliptic-curve Diffie-Hellman
KW - P2P Network
KW - Software-defined Networking
KW - TCP Connection
UR - http://www.scopus.com/inward/record.url?scp=85197857885&partnerID=8YFLogxK
U2 - 10.1109/ICNC59896.2024.10556089
DO - 10.1109/ICNC59896.2024.10556089
M3 - Conference Proceeding
AN - SCOPUS:85197857885
T3 - 2024 International Conference on Computing, Networking and Communications, ICNC 2024
SP - 677
EP - 683
BT - 2024 International Conference on Computing, Networking and Communications, ICNC 2024
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2024 International Conference on Computing, Networking and Communications, ICNC 2024
Y2 - 19 February 2024 through 22 February 2024
ER -