This book describes the essential components of the SCION secure Internet architecture, the first architecture designed foremost for strong security and high availability. Among its core features, SCION also provides route control, explicit trust information, multipath communication, scalable quality-of-service guarantees, and efficient forwarding. The book includes functional specifications of the network elements, communication protocols among these elements, data structures, and configuration files. In particular, the book offers a specification of a working prototype. The authors provide a comprehensive description of the main design features for achieving a secure Internet architecture. They facilitate the reader throughout, structuring the book so that the technical detail gradually increases, and supporting the text with a glossary, an index, a list of abbreviations, answers to frequently asked questions, and special highlighting for examples and for sections that explain important research, engineering, and deployment features. The book is suitable for researchers, practitioners, and graduate students who are interested in network security.
Cited By
- Sridhara S, Wirz F, Ruiter J, Schutijser C, Legner M and Perrig A Global Distributed Secure Mapping of Network Addresses Proceedings of the ACM SIGCOMM 2021 Workshop on Technologies, Applications, and Uses of a Responsible Internet, (1-7)
- Huff E and Gember-Jacobson A Divesting in Socially (Ir)responsible Internet Service Providers Proceedings of the ACM SIGCOMM 2021 Workshop on Technologies, Applications, and Uses of a Responsible Internet, (21-28)
- Bazo R, Boldrini L, Hesselman C and Grosso P Increasing the Transparency, Accountability and Controllability of multi-domain networks with the UPIN framework Proceedings of the ACM SIGCOMM 2021 Workshop on Technologies, Applications, and Uses of a Responsible Internet, (8-13)
- Klenze T, Giuliari G, Pappas C, Perrig A and Basin D Networking in Heaven as on Earth Proceedings of the 17th ACM Workshop on Hot Topics in Networks, (22-28)
Index Terms
- SCION: A Secure Internet Architecture
Recommendations
SCION: Scalability, Control, and Isolation on Next-Generation Networks
SP '11: Proceedings of the 2011 IEEE Symposium on Security and PrivacyWe present the first Internet architecture designed to provide route control, failure isolation, and explicit trust information for end-to-end communications. SCION separates ASes into groups of independent routing sub-planes, called trust domains, ...
Demonstration of xiondp: An XDP-Accelerated Processing of SCION Packets
NOMS 2022-2022 IEEE/IFIP Network Operations and Management SymposiumSCION, as a next-generation network architecture to overcome the technical problems of the Internet, brings its own performance challenges to reach high speed packet processing. The current SCION upstream implementation has two performance limitations. ...
Cryptographic Path Validation for SCION in P4
EuroP4 '23: Proceedings of the 6th on European P4 WorkshopSCION has been proposed as a new Internet architecture addressing security and scalability shortcomings in the current Internet. Multiple real-world deployments of SCION exist already, nevertheless few hardware implementations of SCION routers are ...