A Secure Link State Routing Protocol for NDN

The Named-data Link State Routing protocol (NLSR) is a protocol for intra-domain routing in Named Data Networking (NDN). It is an application level protocol similar to many IP routing protocols, but NLSR uses NDN’s interest/data packets to disseminate routing updates, directly benefiting from NDN’s built-in data authenticity. The NLSR design, which was first developed in 2013 and deployed on the NDN test bed in August 2014, has undergone significant changes. Following an application-driven design approach, NLSR’s development helped drive the development of the trust/security functionality of NDN libraries as well as a number of features in NDN’s forwarding daemon and ChronoSync. In this paper, we describe the current design and implementation of NLSR, with emphasis on those features that differentiate it from an IP-based link state routing protocol: 1) naming: a hierarchical naming scheme for routers, keys, and routing updates; 2) security: a hierarchical trust model for routing within a single administrative domain; 3) routing information dissemination: using ChronoSync to disseminate routing updates; and 4) multipath routing: a simple way to calculate and rank multiple forwarding options. Although NLSR is designed in the context of a single domain, its design patterns may offer a useful reference for future development of inter-domain routing protocols.

[1]  Alexander Afanasyev,et al.  journal homepage: www.elsevier.com/locate/comcom , 2022 .

[2]  Alexander Afanasyev,et al.  Let's ChronoSync: Decentralized dataset state synchronization in Named Data Networking , 2013, 2013 21st IEEE International Conference on Network Protocols (ICNP).

[3]  Van Jacobson,et al.  Networking named content , 2009, CoNEXT '09.

[4]  Syed Obaid Amin,et al.  NLSR: named-data link state routing protocol , 2013, ICN '13.

[5]  J. J. Garcia-Luna-Aceves,et al.  A New Approach to Name-Based Link-State Routing for Information-Centric Networks , 2015, ICN.

[6]  Marián Boguñá,et al.  Self-similarity of complex networks and hidden metric spaces , 2007, Physical review letters.

[7]  Patrick Crowley,et al.  Named data networking , 2014, CCRV.

[8]  Yi Wang,et al.  A two-layer intra-domain routing scheme for named data networking , 2012, 2012 IEEE Global Communications Conference (GLOBECOM).

[9]  J. J. Garcia-Luna-Aceves Routing to Multi-instantiated Destinations: Principles and Applications , 2014, 2014 IEEE 22nd International Conference on Network Protocols.

[10]  Nick McKeown,et al.  A network in a laptop: rapid prototyping for software-defined networks , 2010, Hotnets-IX.

[11]  Deborah Estrin,et al.  Named Data Networking (NDN) Project , 2010 .

[12]  Ronald L. Rivest,et al.  SDSI - A Simple Distributed Security Infrastructure , 1996 .

[13]  Alexander Afanasyev,et al.  On the role of routing in named data networking , 2014, ICN '14.

[14]  David Clark,et al.  Schematizing and Automating Trust in Named Data Networking , 2015 .