Control & Data Plane Security of High Performance Networks
Small Business Information
20 Godfrey Drive, Orono, ME, 04473
AbstractOperating across international borders in cooperation with a multitude of domestic and foreign institutions and scientists, the DOE needs to protect its high performance science networks (such as ESnet and USnet) from destruction by outside adversaries and rogue insiders. This project will develop technology to provide security for ESnet, UNnet, and similar high speed data transfer infrastructures. The security system will (1) be transparent to the user, (2) impose no performance penalty, (3) not rely on placing trust in a single individual or institution, (4) fit into the existing complex and multi-faceted international infrastructure, and (5) be scalable to infrastructures of the future. The approach involves setting up security at the Local Edge Routers (LER), whether for Multiple Path Label Switched (MPLS) or Generalized Multiple Path Label Switched (GMPLS) systems, and controlling the establishment of the Label Switched Paths (LSPs). In addition, the approach will ensure that routing ports and routing wavelengths cannot be changed without appropriate authorization, which will involve providing a defense against trusted insiders who have root or administrative access. Commercial Applications and other Benefits as described by the awardee: In addition to DOE applications, the technology should be of use to the DoD, which also operates high performance networks that support massive data stores, and also interfaces with a variety of US military and foreign coalition partners.
* information listed above is at the time of submission.