Network Security and Trust
For the Internet context, the new solution should look at:
- the interactions between entities, helping to establish a level of trust between the entities such as client hosts, servers, ISPs, applications
- the solutions should also help to trace back, block attacks and contain the attacker and, in the long term, make network hacking, spamming and fraud financially less attractive "businesses”. Among the trustworthy distributed solutions a prominent topic is the blockchain.
For the Internet and 5G, we have created the technology of Customer Edge Switching that provides cooperative firewalls for customer networks. These firewalls manage all communication based on policy and would dissolve the boundary between open and closed networks. Such firewalls can collect and attribute evidence of network attacks making a wide area network wide trust management system feasible.
We have studied the feasibility of such a network wide trust management system in terms of technology and economies of adoption. We have created a Proof-of-Concept level communications security policy management system and shown that it is feasible to largely automate policy creation and allow personification of the policies.
We classify our work in terms of deployability – a typical requirement is that an adoption decision of a solution should make sense for a single selfish investor irrespective of what anyone else is doing.