| With the arrival of “information explosion” era, the network architecture based onTCP/IP is faced more and more problems, such as mobility, safety and congestioncontrol. In order to address these problems fundamentally, researchers in the field offuture network have proposed emerging architectures to replace the TCP/IP network.Named Data Networking (NDN) which is one of the hot research, takes the data-centrictransmission mode and routes based on name. It focuses on what the content is ratherthan where the content’s location is. And network cache couple with content-basedsecurity mechanisms improves the security of the network. However, NDN also comeswith a series of privacy challenges. First, the Data Packet may disclose the identityinformation of the publisher, because it carries with the publisher’s signature. Second, inthe case of non-confidential information sharing, adversaries can obtain Interest Packetfrom consumer and matched Data Packet, through which adversaries can learn sensitiveinformation of consumer, for example, habit.To address these problems, we present an anonymous authentication mechanismand an anonymous communication mechanism in NDN. The main contents of this paperare summarized as follows:(1) We analyze the privacy issues in NDN, including name privacy, contentprivacy, signature privacy and cache privacy.(2) We propose an anonymous authentication scheme based on group signature forNDN. The scheme supports batch verification, which can significantly reducethe verification overhead. The detailed security analysis demonstrates that ourscheme can protect the publishers’privacy.(3) We design an anonymous communication scheme for NDN, which is based ononion routing, while substitute groups for proxy nodes in onion routing. Thescheme can achieve consumer anonymity and producer and consumerunlinkability.And it has the characteristics of fault-tolerant and low latency. |
PDF Full Text Request