Jinjin Liang,Jian Jiang,Haixin Duan,Kang Li

DOI: https://doi.org/10.1109/SP.2014.12

2014-01-01

Security and Privacy

Abstract:Content Delivery Network (CDN) and Hypertext Transfer Protocol Secure (HTTPS) are two popular but independent web technologies, each of which has been well studied individually and independently. This paper provides a systematic study on how these two work together. We examined 20 popular CDN providers and 10,721 of their customer web sites using HTTPS. Our study reveals various problems with the current HTTPS practice adopted by CDN providers, such as widespread use of invalid certificates, private key sharing, neglected revocation of stale certificates, and insecure back-end communication. While some of those problems are operational issues only, others are rooted in the fundamental semantic conflict between the end-to-end nature of HTTPS and the man-in-the-middle nature of CDN involving multiple parties in a delegated service. To address the delegation problem when HTTPS meets CDN, we proposed and implemented a lightweight solution based on DANE (DNS-based Authentication of Named Entities), an emerging IETF protocol complementing the current Web PKI model. Our implementation demonstrates that it is feasible for HTTPS to work with CDN securely and efficiently. This paper intends to provide a context for future discussion within security and CDN community on more preferable solutions.

Milad Ghaznavi,Elaheh Jalalpour,Mohammad A. Salahuddin,Raouf Boutaba,Daniel Migault,Stere Preda

DOI: https://doi.org/10.1109/comst.2021.3093492

2021-01-01

Abstract:A content delivery network (CDN) is a distributed infrastructure to deliver digital contents to end users with high performance. CDNs are critical to provide and protect the availability of Internet contents. However, adversaries can not only evade the CDN protection but also weaponize CDN resources to mount more sophisticated attacks. In this paper, we provide the first survey on CDN security. We categorize CDN security challenges per CDN infrastructure components, discuss possible countermeasures and their effectiveness, and delineate future research directions. This paper aims to highlight the state of CDN security and identify important research challenges in this area.

computer science, information systems,telecommunications

Shi Li,Inshil Doh,Kijoon Chae

DOI: https://doi.org/10.1109/icoin.2016.7427091

2016-01-01

Abstract:Content Delivery Networks (CDN) act as trusted overlay networks that offer high-performance delivery of common Web objects, static data and rich multimedia content by distributing content load among edge servers which are close to the clients. And the interconnection of different CDNs (called CDNi) could provide more advantages and benefits to both content provider and client than a single CDN during the content delivery. However, the interconnection can also bring some security issues which are not existed in single CDN. For example, the users' privacy could be revealed to other CDNs. Thus, to focus on this issue, in this paper, we propose an anonymous IP-based privacy protection mechanism which can protect the users' privacy from leaking to all the CDNs, and the requested content can also be accurately transmitted to the end user through the closest edge server by using the anonymous IP address.

Run Guo,Jianjun Chen,Baojun Liu,Jia Zhang,Chao Zhang,Haixin Duan,Tao Wan,Jian Jiang,Shuang Hao,Yaoqi Jia

DOI: https://doi.org/10.1109/srds.2018.00011

2018-01-01

Abstract:Content Delivery Networks (CDNs) are critical Internet infrastructure. Besides high availability and high performance, CDNs also provide security services such as anti-DoS and Web Application Firewalls to CDN-powered websites. However, the massive resources of CDNs may also be leveraged by attackers exploiting their architectural, implementation, or operational weaknesses. In this paper, we show that today's CDN operation is overly loose in customer-controlled forwarding policy and the lack of origin validation leads to a wide range of abuse cases such as DoS attack and stealthy port scan. We systematically study these abuse cases and demonstrate their feasibility in popular CDNs. Further, we evaluate the impact of these abuses by discovering that there are millions of CDN edge servers, and a substantial fraction of them can be abused. Lastly, we propose mitigation solutions against such abuses and discuss their feasibility.

Shi Li,Inshil Doh,Kijoon Chae

DOI: https://doi.org/10.1109/ICOIN.2015.7057866

2015-01-01

Abstract:Content delivery network interconnection (CDNi) as a new interactive network which inherits all of the advantages of single CDN. Moreover, CDNs supported by different network operators can communicate with each other directly through the interfaces between them. Meanwhile, the interactivity also brings some security issues. In this paper, we propose a new CDNi communication architecture which combined with another two efficient technologies, ALTO and SDN. Based on this architecture, a key generation and distribution mechanism is also proposed to ensure the security communication of content in CDNi. From the analysis result, we can proof that it is scarcely possible for attackers to break our security system.

YANG Yang,WANG Song,ZHU Ming

2007-01-01

Abstract:Corresponding security mechanism must be offered in peer-to-peer (P2P) content distribution network (CDN), while keeping highly efficient Video-on-Demand (VOD) service. Traditional mechanisms based on C/S architecture do not agree with the distribution characteristic of P2P system. An authentication model named Distributed Public Key Infrastructure (DPKI) was proposed to guarantee the security of authentication as well as the performance of the system.

Jiachen Chen,Haoyuan Xu,Shashikanth Penugonde,Yanyong Zhang,Dipankar Raychaudhuri

DOI: https://doi.org/10.1109/HotWeb.2016.11

2016-01-01

Abstract:The Content Delivery Network (CDN) has become an important element in the Internet, which uses applicationlayer caches to improve user experience and reduce network/server load. However, CDNs face efficiency issues due to the following two reasons: 1) they are not aware of the network status, and 2) the underlying location-centric network (IP) does not understand content. At the same time, the Information-Centric Network (ICN) has been developed to address these issues: they use content identities as routing labels and support functions such as multi-source, multicast and in-network caching. While these in-network caches can help improve the content delivery performance, they are unaware of applicationspecific characteristics like policy and popularity. As a result, we believe application-layer CDN solutions are still beneficial in ICN. They can take advantage of ICN content delivery capabilities while having access to application-level details, therefore getting the best from both worlds. In this paper, we propose a CDN architecture over Mobility-First - a representative example of ICN - to show the benefit of such a design. The solution uses self-certifying names that can enable efficient content validation in CDNs, an applicationlayer CDN design that can maximize the utility of caches, and a pushing mechanism that allows content providers cache content proactively. Through a prototype, we show the feasibility and efficiency of the architecture.

Shucheng Yu,Kui Ren,Wenjing Lou

DOI: https://doi.org/10.1109/NPSEC.2008.4664879

2008-01-01

Abstract:Access control in content distribution networks (CDNs) is a long-standing problem and has attracted extensive research. Traditional centralized access control approaches, such as reference monitor based approach, do not suit for CDNs as such networks are of large scale and geographically distributed in nature. Current CDNs usually resort to cryptographic-based distributed approaches for better fulfilling the goal of access control. Hence, it is highly critical to design and adapt appropriate cryptographic primitives for such purpose. In this paper, we propose a novel distributed access control approach for CDNs by exploiting a new cryptographic primitive called Ciphertext Policy Attributed-Based Encryption (CP-ABE). Our approach provides flexible yet fine-grained access control (per file level) so that the contents are available only to the authorized users. We further consider the protection of user privacy and enhance the current design of CP-ABE so that not only the contents themselves but also the access policies, which could lead to the revelation of sensitive user information, are well protected.

Lenise M. V. Rodrigues,Daniel Sadoc Menasché,Arthur Serra,Antonio A. de Aragão Rocha

2024-10-08

Abstract:This paper presents an approach to managing access to Content Delivery Networks (CDNs), focusing on combating the misuse of tokens through performance analysis and statistical access patterns. In particular, we explore the impact of token sharing on the content delivery infrastructure, proposing the definition of acceptable request limits to detect and block abnormal accesses. Additionally, we introduce countermeasures against piracy, such as degrading the quality of service for pirate users to discourage them from illegal sharing, and using queuing models to quantify system performance in different piracy scenarios. Adopting these measures can improve the consistency and efficiency of CDN access and cost management, protecting the infrastructure and the legitimate user experience.

Networking and Internet Architecture,Cryptography and Security

Ghada Almashaqbeh,Kevin Kelley,Allison Bishop,Justin Cappos

DOI: https://doi.org/10.48550/arXiv.1906.10272

2019-06-25

Abstract:Peer-assisted content distribution networks(CDNs) have emerged to improve performance and reduce deployment costs of traditional, infrastructure-based content delivery networks. This is done by employing peer-to-peer data transfers to supplement the resources of the network infrastructure. However, these hybrid systems are vulnerable to accounting attacks in which the peers, or caches, collude with clients in order to report that content was transferred when it was not. This is a particular issue in systems that incentivize cache participation, because malicious caches may collect rewards from the content publishers operating the CDN without doing any useful work. In this paper, we introduce CAPnet, the first technique that lets untrusted caches join a peer-assisted CDN while providing a bound on the effectiveness of accounting attacks. At its heart is a lightweight cache accountability puzzle that clients must solve before caches are given credit. This puzzle requires colocating the data a client has requested, so its solution confirms that the content (or at least an amount of data within a pre-configured bound) has actually been retrieved. We analyze the security and overhead of our scheme in realistic scenarios. The results show that a modest client machine using a single core can solve puzzles at a rate sufficient to simultaneously watch dozens of 1080p videos. The technique is designed to be even more scalable on the server side. In our experiments, one core of a single low-end machine is able to generate puzzles for 4.26 Tbps of bandwidth - enabling 870,000 clients to concurrently view the same 1080p video. This demonstrates that our scheme can ensure cache accountability without degrading system productivity.

Cryptography and Security

Hu Xiong,Zhida Zhou,Lili Wang,Zetong Zhao,Xin Huang,Hao Zhang

DOI: https://doi.org/10.1109/jsyst.2021.3113728

IF: 4.802

2021-01-01

IEEE Systems Journal

Abstract:By redirecting a user's request to the nearest cache server, content delivery networks (CDNs) enable users to obtain services in time and reduce the burden of the origin server. Nevertheless, the origin server suffers from the private key leakage problem when delegating the authentication capability to untrusted CDN nodes. To handle this challenge, this article proposes an anonymous authentication protocol with delegation and revocation for CDNs depending on the proxy resignature (PRS) cryptography. Specifically, we first present an efficient revocable PRS (R-PRS) scheme, which is proved to be secure under the extended Computational Diffie-Hellman assumption. Then, based on R-PRS scheme, the proposed protocol enables the origin server to delegate and revoke the authentication capability to the CDN nodes without leaking its private key. Furthermore, our protocol not only provides anonymity, mutual authentication, and session key establishment, but also achieves forward security. Eventually, theoretical analysis and implementation demonstrate that the proposed protocol has an excellent performance in efficiency and practicality.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Run Guo,Weizhong Li,Baojun Liu,Shuang Hao,Jia Zhang,Haixin Duan,Kaiwen Sheng,Jianjun Chen,Ying Liu

DOI: https://doi.org/10.14722/ndss.2020.24411

2020-01-01

Abstract:A content delivery network (CDN) improves the accessing performance and availability of websites via its globally distributed network infrastructures, which contributes to the thriving of CDN-powered websites on the Internet. Because CDN-powered websites normally operate important businesses or critical services, attackers are mostly interested in taking down these high-value websites, to achieve severe damage with maximum influence. Because the CDN absorbs distributed attacking traffic with its massive bandwidth resources, it is commonly believed that CDN vendors provide effective DoS protection for the CDN-powered websites. However, we reveal that implementation or protocol weaknesses in the forwarding mechanisms of the CDN can be exploited to break this CDN protection. By sending crafted but legal requests, an attacker can launch an efficient DoS attack against the website origin behind it. In particular, we present three CDN threats in this study. By abusing the HTTP/2 request-converting behavior and HTTP pre-POST behavior of a CDN, an attacker can saturate the CDN-origin bandwidth and exhaust the connection limits of the origin. What is more concerning is that some CDN vendors use only a small set of traffic forwarding IPs with lower IP-churning rates to establish connections with the origin. This characteristic provides a great opportunity for an attacker to effectively degrade the global availability of a website just by cutting off specific CDN-origin connections. In this work, we examine the CDN request-forwarding behaviors across six well-known CDN vendors and perform real-world experiments to evaluate the severity of the threats. Because the threats are caused by flawed trade-offs made by the CDN vendors between usability and security, we discuss possible mitigation and received positive feedback after responsible disclosure to the aforementioned CDN vendors.

Kaiping Xue,Peixuan He,Jiayu Yang,Qiudong Xia,David S. L. Wei

DOI: https://doi.org/10.1109/tnet.2022.3155110

2022-01-01

IEEE/ACM Transactions on Networking

Abstract:As one of the promising next generation network architectures, information centric networking (ICN) is highly anticipated to improve the bandwidth usage of the Internet and reduce duplicate traffic. Since contents in ICN are disseminated in the whole network, ICN is much more vulnerable and the issue of how to deliver contents securely has been intensively discussed. However, the scalability of the existing schemes is limited. A scalable scheme is expected to be able to achieve fine-grained access control and at the same time also support multiple content providers scenario with efficient key management at user side. Besides, different content providers may publish some identical contents and these contents may be cached in the same intermediate routers, which causes high data redundancy and in turn exerts an adverse impact on the performance of ICN. In this paper, we propose a Secure Content Delivery and Deduplication scheme, called SCD2, to achieve secure and efficient fine-grained access control in ICN with multiple content providers. We first propose a scalable key-policy attribute-based encryption (SKP-ABE) to provide fine-grained access control and allow different attribute authorities to share some public attributes to simplify the key management. Furthermore, based on SKP-ABE, we design a simple but effective mechanism to conduct content deduplication. Finally, we implement a prototype of SCD2 to test its performance and compare it with some existing schemes. The results show that SCD2 has lower storage overhead, a higher degree of deduplication, and better retrieval efficiency.

ZHAO Wen-Dao,CUI Yan,Xue Feng

2006-01-01

Periodical of Ocean University of China

Abstract:With a Content Delivery Network(CDN),the operator could transfer the content to the distributed edge servers and this makes it possible that clients can obtain what they want more quickly without updating the expensive core network.This paper focuses on our experiment in building a CDN network under Linux,including two main modules,content routing based on DNS and 7 layer content switching.Also we established a CDN network with both of these two kinds of technology.This architecture could shorten the response times,which is shown by the test results.

Zhou Su,Hongyu Gu Jiro Katto,Yasuhiko Yasuda

2005-01-01

Abstract:end-users. In this paper, we therefore talk about how to support a strong Web consistency in CDN. We firstly carry out theoretical analyses of Web access distribution, content server relationship and network traffic. Based on these analyses we then propose a novel algorithm in which not only the access distribution of Web contents but also the current network topology are considered. Through simulations, we check the performance of our proposal when the related parameters are changed. Simulation results show that our proposal can efficiently minimize user delay and network traffic.

Li Yang,Abdallah Moubayed,Abdallah Shami,Parisa Heidari,Amine Boukhtouta,Adel Larabi,Richard Brunner,Stere Preda,Daniel Migault

DOI: https://doi.org/10.1109/TNSM.2021.3100308

2021-07-24

Abstract:Content delivery networks (CDNs) provide efficient content distribution over the Internet. CDNs improve the connectivity and efficiency of global communications, but their caching mechanisms may be breached by cyber-attackers. Among the security mechanisms, effective anomaly detection forms an important part of CDN security enhancement. In this work, we propose a multi-perspective unsupervised learning framework for anomaly detection in CDNs. In the proposed framework, a multi-perspective feature engineering approach, an optimized unsupervised anomaly detection model that utilizes an isolation forest and a Gaussian mixture model, and a multi-perspective validation method, are developed to detect abnormal behaviors in CDNs mainly from the client Internet Protocol (IP) and node perspectives, therefore to identify the denial of service (DoS) and cache pollution attack (CPA) patterns. Experimental results are presented based on the analytics of eight days of real-world CDN log data provided by a major CDN operator. Through experiments, the abnormal contents, compromised nodes, malicious IPs, as well as their corresponding attack types, are identified effectively by the proposed framework and validated by multiple cybersecurity experts. This shows the effectiveness of the proposed method when applied to real-world CDN data.

Cryptography and Security,Artificial Intelligence,Machine Learning,Networking and Internet Architecture

Rajkumar Buyya,A.-M.K. Pathan,J. Broberg,Z. Tari,Al-mukaddim Pathan,James Broberg,Zahir Tari

DOI: https://doi.org/10.1109/mdso.2006.57

2006-10-01

IEEE Distributed Systems Online

Abstract:Service providers often geographically distribute their Web servers' facilities to improve performance, reliability, and scalability. Content delivery networks, which first evolved in 1998, replicate content over several mirrored Web servers, strategically placed at various locations to deal with flash crowds and to enhance response time. A CDN improves network performance by maximizing bandwidth, improving accessibility, and maintaining correctness through content replication. Unfortunately, although many commercial CDN providers exist, they don't cooperate in delivering content to end users in a scalable manner. In addition, content providers typically subscribe to one CDN provider and thus can't use multiple CDNs at the same time. Such a closed, noncooperative model results in "islands" of CDNs. We present a model for an open, scalable, and service-oriented architecture (SOA)-based system. This system helps to create open content and service delivery networks (CSDNs) that scale well and can share resources with other CSDNs through cooperation and coordination, thus overcoming the island CDN problem

Muhammad Bilal,Sangheon Pack

DOI: https://doi.org/10.1109/jsyst.2019.2931813

IF: 4.802

2020-06-01

IEEE Systems Journal

Abstract:The benefits of the ubiquitous caching in information centric networking (ICN) are profound; even though such features make ICN promising for content distribution, but it also introduces a challenge to content protection against the unauthorized access. The protection of a content against unauthorized access requires consumer authentication and involves the conventional end-to-end encryption. However, in ICN, such end-to-end encryption makes the content caching ineffective since encrypted contents stored in a cache are useless for any consumers except those who know the encryption key. For effective caching of encrypted contents in ICN, we propose a secure distribution of protected content (SDPC) scheme, which ensures that only authenticated consumers can access the content. SDPC is lightweight and allows consumers to verify the originality of the published content by using a symmetric key encryption. SDPC also provides protection against privacy leakage. The security of SDPC was proved with the Burrows–Abadi–Needham (BAN) logic and Scyther tool verification, and simulation results show that SDPC can reduce the content download delay.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Qi Li,Ravi Sandhu,Xinwen Zhang,Mingwei Xu

DOI: https://doi.org/10.1109/tdsc.2015.2494049

2017-01-01

Abstract:Several Information Centric Network (ICN) architectures have been proposed as candidates for the future Internet, aiming to solve several salient problems in the current IP-based Internet architecture such as mobility, content dissemination and multi-path forwarding. In general, security and privacy are considered as essential requirements in ICN. However, existing ICN designs lack built-in privacy protection for content providers (CPs), e.g., any router in an Internet Service Provider in ICN can cache any content, which may result in information leakage. In this paper, we propose Mandatory Content Access Control (MCAC), a distributed information flow control mechanism to enable a content provider to control which network nodes can cache its contents. In MCAC, a CP defines different security labels for different contents, and content routers check these labels to decide if a content object should be cached. To ensure correct enforcement of MCAC, we also propose a design of a trusted architecture by extending existing mainstream router architectures. We evaluate the performance of MCAC in the NS-3 simulator. The simulation results show that enforcing MCAC in routers does not introduce significant overhead in content forwarding.

Wy Ma,B Shen,J Brassil

2001-01-01

Abstract:Content delivery networks (CDNs) can be viewed as application-specific overlay networks that make web caching an infrastructure service accessible to any content provider. As the Internet continues to evolve with increasing diversity and heterogeneity, we see a growing demand for extending the capabilities of network intermediaries to provide additional services such as content adaptation, personalization, watermarking and location-aware data insertion.A content services network (CSN) is proposed in this paper to make content transformation and processing an infrastructure service accessible to its subscribers. One can think of CSN as another layer of network infrastructure built around CDNs. This layer interacts collaboratively with user-agents, content servers, and other network intermediaries including ISPs' caching proxies and CDNs' surrogates in the content delivery process to provide value-added services. Furthermore, a CSN provides network resources that are used as a 'service' distribution channel for value-added services providers to make their applications an infrastructure service.To demonstrate the utility of our proposed CSN model, we describe the prototype implementation of a video segmentation and keyframe selection system as an infrastructure service that can be used by content providers or end users to enhance the way video is delivered over the Internet.