Empowering Security and Mobility in Future Networks with an Identity-Based Control Plane

Pedro MARTINEZ-JULIA  Antonio F. SKARMETA  

Publication
IEICE TRANSACTIONS on Communications   Vol.E97-B   No.12   pp.2571-2582
Publication Date: 2014/12/01
Online ISSN: 1745-1345
DOI: 10.1587/transcom.E97.B.2571
Type of Manuscript: INVITED PAPER (Special Section on Technologies and Architectures for Improving Scalability, Reliability, and Robustness for Future Information Networks)
Category: 
Keyword: 
future network,  identity,  overlay,  security,  mobility,  

Full Text: FreePDF(1.6MB)


Summary: 
Current network technologies, mainly represented by the Internet, have demonstrated little capacity to evolve because of the strict binding of communications to identifiers and locators. While locator namespaces represent the position of communication participants in the graph of a specific protocol, unstructured/plain identifiers represent the position of communications participants in the global network graph. Although they are valid for forwarding packets along communication paths, both views fail to fully represent the actual entities behind communications beyond a simple vertex. In this paper we introduce and evaluate an identity-based control plane that resolves these problems by abstracting communications from identifiers and locators and by using identities to achieve enhanced security, and mobility management operations. This identity-based control plane can then be integrated into different network architectures in order to incorporate the features it provides. This facilitates the evolution capacity of those architectures that separate the information transmission concerns (networking, routing), from end-to-end aspects like security and mobility management.