Security Issues in Networks with Internet Access

Proceedings of the IEEE

Volumn 85, Issue 12, 1997, Pages 2034-2051

  Landwehr, Carl E ^a,b   Goldschlag, David M ^a  

^a NAVAL RESEARCH LABORATORY   (United States)

^b Divx   (United States)

Author keywords

Authentication; Computer network security; Cryptography; Internet

Indexed keywords

CRYPTOGRAPHY; SECURITY OF DATA;

INTERNET;

WIDE AREA NETWORKS;

EID: 0031378491     PISSN: 00189219     EISSN: None     Source Type: Journal    
DOI: 10.1109/5.650183     Document Type: Article

References (40)

1. S. M. Bellovin, "Problem areas for the IP security protocols," in Proc. 6th Usenix UNIX Security Symp., July 1996. (Available: ftp://ftp.research.att.com/dist/smb/badesp.ps.)
2. _, "Network and Internet security," The Computer Science and Engineering Handbook, A. B. Tucker, Jr., Ed. Boca Raton, FL: CRC Press, 1997, ch. 92, pp. 1949-1961.
3. S. Bradner and A. Mankin, Eds, IPng, Internet Protocol Next Generation. Reading, MA: Addison-Wesley, 1996.
4. R. Barret, S. Yonder Haar, and R. Whitestone. (1997, Apr. 25). Routing snafu causes Internet outage. Inter@ctive Week Online. Available: http://www.zdnet.com/intweek.
5. 'TCP SYN flooding and IP spoofing attacks," Computer Emergency Response Team, CERT advisory 96.21, Sept. 1996. (Available: ftp://info.cert.org/pub/cert-advisories/CA" ~96.21 .tcp-synJlooding.)
6. W. R. Cheswick and S. M. Bellovin, Firewalls and Internet Security: Repelling the Wily Hacker. Reading, MA: AddisonWesley, 1994.
7. D. E. Comer, Internenvorking with TCP/IP, vol. I. Englewood Cliffs, NJ: Prentice-Hall, 1991.
8. W. Diffic and M. E. Hellman, "New directions in cryptography," IEEE Trans. Inform. Theory, vol. IT-22, pp. 644-654, Nov. 1976.
9. D. Eastlake, III, "Secure domain name system dynamic update," Internet Engineering Task Force, Internet draft draft-ietf-dnssecupdatc-04.txt, Feb. 4, 1997.
10. D. Ferbrache and S. Mort, "Malicious software and hacking," in The Computer Science anil Engineering Handbook, A. B. Tucker, Jr., Ed. CRC Press, 1997, ch. 93, pp. 1962-1979.
11. A. O. Freier, P. Karlton, and P. Kocher, "The SSL protocol, version 3.0," Internet Engineering Task Force, Internet draft draft-ietf-tls-ssl-version3-00.txt, Nov. 18, 1996. (Available: http://ds.intemic.net/internet-drafts/draft-ietf-tls-ssl-version3-00.txt.)
12. Definition of "Internet." (Oct. 24, 1995). Federal Networking Council Resolution. [Online]. Available: http://www.fnc.gov/Internet .res.html.)
13. S. Garfinkel and E. Spafford, Practical UNIX and Internet Security, 2nd ed. Sebastopol, CA: O'Reilly, 1996.
14. F. T. Grarnpp and R. H. Morris, "UNIX operating system security," AT&T Bell Labs. Tech. J., vol. 63, no. 8, pp. 1649-1672, Oct. 1984.
15. N. M. Haller, "The S/key one-time password system," in Proc. Internet Society Symp. Network and Distributed System Security, San Diego, CA, Feb. 1994, pp. 151-157.
16. G. H. Kim and E. H. Spafford, "Writing, supporting, and evaluating tripwire: A publicly available security tool," Computer Science Department, Purdue University, West Lafayette, IN, Purdue Tech. Rep. CSD-TR-94-019, Mar. 12, 1994. This report and much relevant information is available at the COAST computer security archive, http://www.cs.purdue.edu/coastJ.
17. C. Kaufman, R. Perlman, and M. Speciner, Network Security: Private Communications in a Public World. Englewood Cliffs, NJ: Prentice-Hall, 1995.
18. B. Lampson, "A note on the confinement problem," Commun. ACM. vol. 16, no. 10, pp. 613-615, 1973.
19. C. E. Landwehr, "Protection (security) models and policy," in The Computer Science and Engineering Handbook, A. B. Tucker, Jr., Ed. CRC Press, 1997, ch. 90, pp. 1914-1928.
20. C. E. Landwehr, A. R. Bull, J. P. McDermott, and W. S. Choi, "A taxonomy of computer program security flaws," ACM Comput. Suneys, vol. 26, no. 3, pp. 211-254, Sept. 1994.
21. G. McGraw and E. Feiten, Java Security: Hostile Applets, Holes, and Antidotes. New York: Wiley, 1997.
22. Open Systems Interconnection: Basic Reference Model-Part 2: Security Architecture, ISO/IEC 7498-2.
23. E. Rescorla and A. Schiffman, "Secure hypertext transport protocol," Internet Engineering Task Force, Internet draft draft-ietf-wts-shttp-04.txt. Mar. 1997. (Available: http://ds.intemic.net/intemet-drafts/draft-ietf-wts-shttp-04.txt.)
24. R. L. Rivest, A. Shamir, and L. M. Adleman, "A method for obtaining digital signatures and public-key cryptosystems," Commun. ACM, vol. 21, no. 2, pp. 120-126, Feb. 1978.
25. P. Mockapetris, "Domain names-Concepts and facilities," Internet Engineering Task Force, RFC 1034, Nov. 1987.
26. _, "Domain names-Implementation and specification," Internet Engineering Task Force, RFC 1035, Nov. 1987.
27. R. Atkinson, "Security architecture for the Internet protocol" Internet Engineering Task Force, RFC 1825, Aug. 1995.
28. _, "IP authentication header" Internet Engineering Task Force, RFC 1826, Aug. 1995.
29. _, "IP encapsulating security payload," Internet Engineering Task Force, RFC 1827, Aug. 1995.
30. D. Eastlake, III, and C. Kaufman, "Domain name system security extensions," Internet Engineering Task Force, RFC 2065, Jan. 1997.
31. B. Schneier, Applied Cryptography: Protocols, Algorithms and Source Code in C, 2nd ed. New York: Wiley, 1996.
32. C. L. Schuba, I. V. Krsul, M. G. Kühn, E. H. Spafford, A. Sundaram, and D. Zamboni, "Analysis of a denial of service attack on TCP," in Proc. 1997 lEEESymp. Security and Privacy, Oakland, CA, pp. 208-223.
33. J. Steiner, B. C. Neuman, and J. I. Schiller, "Kerberos: An authentication service for open network systems," in Proc. Winter USENIX Conf.. Dallas, TX, 1988, pp. 191-202.
34. P. F. Syverson, D. M. Goldschlag, and M. G. Reed, "Anonymous connections and onion routing," in Proc. 1997 IEEE Symp. Security and Privacy, Oakland, CA, pp. 44-54. See also http://www.itd.nrl.navy.mil/ITD/5540/projects/onion-routing/.
35. S. Thomson, Y. Rekhter, and J. Bound, "Dynamic updates in the domain name system," Internet Engineering Task Force, Internet draft draft-ietf-dnsind-dynDNS-11.txt, P. Vixie, Ed., July 14, 1994.
36. P. Wayner, Digital Cash: Commerce on the Net. Chestnut Hill, MA: AP Professional, 1996.
37. _, "Security holes threaten Microsoft game plan," The New York Times, Mar. 28, 1997.
38. P. R. Zimmerman, The Official POP User's Guide. Cambridge, MA: MIT Press, 1995.
39. W. Shockley, Electrons and Holes in Semiconductors. Princeton, N.J.: Van Nostrand, 1950.
40. C. T. Sah, "Evolution of the MOS transistor-From conception to VLSI," Proc. IEEE, vol. 76, pp. 1280-1326, 1988.