By Topic

A New NSIS Application for LSP Setup with Security Features

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Polito, S.G. ; Tech. Univ. Carolo-Wilhelmina zu Braunschweig, Braunschweig, Germany ; Gebbers, D. ; Chamania, M. ; Jukan, A.

Connection-oriented path setup is becoming one of the key features of the next-generation Internet with the Multi-Protocol Label Switched (MPLS) framework and its generalized version GMPLS addressing the automated label switched path (LSP) setup. Despite the significant technological progress in various LSP implementations, the integration of robust security features for authentication and authorization for global path setup remains an open issue. However, security is becoming essential for carrier-grade operations as it directly translates to inter-carrier's service level agreements and user's satisfaction with quality of the services purchased. In this paper, we propose to study the applicability of NSIS (Next Step Signaling Protocol) for LSP setup signaling with security features; NSIS is a generic protocol for configuring network nodes that supports multiple existing transport and security protocols. We design an NSIS application called NSIS-LSP which takes advantage of the NSIS transport security features and has own features for application layer authentication. Unlike the existing path setup protocols that refer to security mechanisms between neighboring domains for resource provisioning, NSIS-LSP also allows mutual authentication between source and remote provisioning domains. We use an open-source NSIS testbed and simulations to obtain the performance results, which show that the NSIS-LSP application carries significant potential for future implementations.

Published in:

Communications (ICC), 2010 IEEE International Conference on

Date of Conference:

23-27 May 2010