Applied cryptography (2nd ed.): protocols, algorithms, and source code in C
Applied cryptography (2nd ed.): protocols, algorithms, and source code in C
Security problems in the TCP/IP protocol suite
ACM SIGCOMM Computer Communication Review
Problem areas for the IP security protocols
SSYM'96 Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography - Volume 6
Security at the Internet Layer
Computer
Developing an Integrated Testing Environment Using the World Wide Web Technology
COMPSAC '97 Proceedings of the 21st International Computer Software and Applications Conference
| Hi-index | 4.10 |
Lack of widely available Internet security has discouraged some commercial users. The author describes efforts to make cryptographic security more widely available and looks at efforts to secure the Internet infrastructure. Commercial and government enterprises have been reluctant to use the Internet because cryptographic security mechanisms are not widely available. The Internet continues to grow rapidly, but it is becoming increasingly segmented as companies resort to firewalls and intranets. If this continues, the concept of a global network will give way to many islands of private intranets only partially connected to a global structure. This would limit the usefulness of Internet technology in connecting people and hence would impede the rapid dissemination of information-one of the main reasons the Internet was created. During the past few years, significant progress has been made within the Internet Engineering Task Force, the Internet standards body, in adding cryptographic security to standards for the Internet infrastructure. This progress offers hope in restoring the vision of a global Internet, but some obstacles remain. This article describes efforts to address security in the five areas of the Internet infrastructure: the Internet Protocol itself, routing of the Internet Protocol packets, name and address resolution using the Domain Name System, network management, and the key management used in the preceding four areas. For each area, the article describes the current technology, outlines the security risks addressed, and discusses likely future directions. As the description underlines, the technology is largely here, but nontechnical issues also influence progress: the avoidance of patented technologies where feasible, commercial concerns about the timely availability of standards, and community mistrust of some technologies (like key escrow) can delay the adoption of new technologies. The good news is that despite these obstacles, the Internet of the next century should have significantly stronger and more widely available security mechanisms. The bad news is that, at least for the foreseeable future, we are in a race with the parties attacking the Internet, so the Internet's security technologies must continue to evolve as attacks grow more sophisticated.