liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
KDC Placement Problem in Secure VPLS Networks
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering. (AEGIS)ORCID iD: 0000-0002-3570-3297
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering.ORCID iD: 0000-0001-8960-0544
School of Computer Science, University College Dublin, Dublin, Ireland.ORCID iD: 0000-0003-4786-030X
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering. (AEGIS)ORCID iD: 0000-0002-9829-9287
2023 (English)In: IEEE Transactions on Information Forensics and Security, ISSN 1556-6013, E-ISSN 1556-6021, Vol. 18, p. 1951-1962Article in journal (Refereed) Published
Abstract [en]

Virtual Private LAN Service (VPLS) is a VPN technology that connects remote client sites with provider networks in a transparent manner. Session key-based HIPLS (S-HIPLS) is a VPLS architecture based on the Host Identity Protocol (HIP) that provides a secure VPLS architecture using a Key Distribution Center (KDC) to implement security mechanisms such as authentication, encryption etc. It exhibits limited scalability though. Using multiple distributed KDCs would offer numerous advantages including reduced workload per KDC, distributed key storage, and improved scalability, while simultaneously eliminating the single point of failure of S-HIPLS. It would also come with the need for optimally placing KDCs in the provider network. In this work, we formulate the KDC placement (KDCP) problem for a secure VPLS network as an Integer Linear Programming (ILP) problem. The latter is NP-hard, thereby suggesting a high computational cost for obtaining exact solutions especially for large deployments. Therefore, we motivate the use of a primal-dual algorithm to efficiently produce near-optimal solutions. Extensive evaluations on large-scale network topologies, such as the random Internet graph, demonstrate our method’s time-efficiency as well as its improved scalability and usefulness compared to both HIPLS and S-HIPLS.

Place, publisher, year, edition, pages
IEEE, 2023. Vol. 18, p. 1951-1962
Keywords [en]
VPLS, VPN, HIP, security, industrial internet
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:liu:diva-192470DOI: 10.1109/tifs.2023.3254447ISI: 000960679600004Scopus ID: 2-s2.0-85149833183OAI: oai:DiVA.org:liu-192470DiVA, id: diva2:1744533
Funder
CUGS (National Graduate School in Computer Science)ELLIIT - The Linköping‐Lund Initiative on IT and Mobile Communications
Note

Funding: Graduate School in Computer Science (CUGS); Excellence Center at Linkoping-Lund in Information Technology (ELLIIT)

Available from: 2023-03-20 Created: 2023-03-20 Last updated: 2023-05-08Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Borhani, MohammadAvgouleas, IoannisGurtov, Andrei

Search in DiVA

By author/editor
Borhani, MohammadAvgouleas, IoannisLiyanage, MadhusankaGurtov, Andrei
By organisation
Database and information techniquesFaculty of Science & Engineering
In the same journal
IEEE Transactions on Information Forensics and Security
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 144 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf