Netinfo Security ›› 2023, Vol. 23 ›› Issue (6): 55-65.doi: 10.3969/j.issn.1671-1122.2023.06.006

Previous Articles     Next Articles

A Privacy Protection Scheme for Information-Centric Networking Based on Intel SGX

TANG Yu1, ZHANG Chi2()   

  1. 1. Institute of Advanced Technology, University of Science and Technology of China, Hefei 230031, China
    2. School of Cyber Science and Technology, University of Science and Technology of China, Hefei 230022, China
  • Received:2023-03-30 Online:2023-06-10 Published:2023-06-20

Abstract:

As a novel network architecture, Information-Centric Networking (ICN) maximizes the utilization of network bandwidth and provides fast, reliable, and scalable content exchange services. However, the routing nodes in ICN are required to perform additional functions, such as data storage and name retrieval, making their software and hardware architecture more complex than traditional networks. This complexity can lead to increased vulnerabilities in the network infrastructure. Therefore, this paper proposed a privacy protection scheme for ICN based on a trusted execution environment. The scheme used skip lists to store the primary memory data within the network and leveraged the trusted execution environment provided by Intel SGX to ensure the confidentiality and integrity of data stored in untrusted memory. Furthermore, a forwarding scheme was proposed to protect the privacy of network content packet names. The experimental results demonstrate that the proposed approach can provide enhanced security, with only a slight increase of approximately 10% in average network-level latency compared to the NDN baseline solution.

Key words: information-centric networking, trusted execution environment, Intel SGX, privacy protection

CLC Number: