Skip to main content

Patterns and Interactions in Network Security

Author(s): Zave, Pamela; Rexford, Jennifer

To refer to this page use:
Abstract: Networks play a central role in cyber-security: networks deliver security attacks, suffer from them, defend against them, and sometimes even cause them. This article is a concise tutorial on the large subject of networks and security, written for all those interested in networking, whether their specialty is security or not. To achieve this goal, we derive our focus and organization from two perspectives. The first perspective is that, although mechanisms for network security are extremely diverse, they are all instances of a few patterns. Consequently, after a pragmatic classification of security attacks, the main sections of the tutorial cover the four patterns for providing network security, of which the familiar three are cryptographic protocols, packet filtering, and dynamic resource allocation. Although cryptographic protocols hide the data contents of packets, they cannot hide packet headers. When users need to hide packet headers from adversaries, which may include the network from which they are receiving service, they must resort to the pattern of compound sessions and overlays. The second perspective comes from the observation that security mechanisms interact in important ways, with each other and with other aspects of networking, so each pattern includes a discussion of its interactions.
Publication Date: 2021
Citation: Zave, Pamela, and Jennifer Rexford. "Patterns and Interactions in Network Security." ACM Computing Surveys (CSUR) 53, no. 6 (2021): pp. 1-37. doi:10.1145/3417988
DOI: 10.1145/3417988
ISSN: 0360-0300
Pages: 1 - 37
Type of Material: Journal Article
Journal/Proceeding Title: ACM Computing Surveys
Version: Author's manuscript

Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.