Homomorphic Routing: Private Data Forwarding in the Internet

Tusa, F., Griffin, D. and Rio, M. 2023. Homomorphic Routing: Private Data Forwarding in the Internet. 2nd ACM SIGCOMM Workshop on Future of Internet Routing & Addressing (FIRA '23). ACM. https://doi.org/10.1145/3607504.3609287

TitleHomomorphic Routing: Private Data Forwarding in the Internet
AuthorsTusa, F., Griffin, D. and Rio, M.
TypeConference paper
Abstract

We propose a new private routing and packet forwarding scheme for the Internet—Homomorphic Routing (HR)—that enables endpoints to communicate with one another without divulging source or destination addresses to the routers or service providers along the path. This is achieved via homomorphic encryption, whereby domains can match encrypted address ranges with encrypted destinations of packets without the need of decryption. Compared to approaches such as source or onion routing, HR is a hop-by-hop solution that allows current BGP-like decisions and traffic engineering techniques to remain largely unchanged, while per-flow state need not be maintained by routers. Preliminary performance evaluation shows that HR implies a tolerable computational overhead compared to plain text operations. Through aggregation we can compress inter-domain routing rules to around 5% of those required for current IPv6 and we can organize encrypted forwarding rules so that matching can be achieved in logarithmic time.

Year2023
Conference2nd ACM SIGCOMM Workshop on Future of Internet Routing & Addressing (FIRA '23)
PublisherACM
Publisher's version
License
CC BY 4.0
File Access Level
Open (open metadata and files)
Publication dates
Published online10 Sep 2023
Published in print10 Sep 2023
JournalProceedings of the 2nd ACM SIGCOMM Workshop on Future of Internet Routing & Addressing
ISBN9798400702761
Digital Object Identifier (DOI)https://doi.org/10.1145/3607504.3609287

Related outputs

Decentralised Orchestration of Microservices in the Cloud-to-Edge Continuum
Kiss, T., Ullah, A., Kovacs, J., Deslauriers, J., Terstyanszky, G. and Tusa, F. 2024. Decentralised Orchestration of Microservices in the Cloud-to-Edge Continuum. 16th International Workshop on Science Gateways (IWSG2024). Tolouse, France 18 - 20 Jun 2024 Zenodo. https://doi.org/10.5281/zenodo.13863564

Microservices and serverless functions – lifecycle, performance, and resource utilisation of edge based real-time IoT analytics
Francesco Tusa, Stuart Clayman, Alina Buzachis and Maria Fazio 2024. Microservices and serverless functions – lifecycle, performance, and resource utilisation of edge based real-time IoT analytics. Future Generation Computer Systems. 155, pp. 204-218. https://doi.org/10.1016/j.future.2024.02.006

Swarmchestrate: Towards a Fully Decentralised Framework for Orchestrating Applications in the Cloud-to-Edge Continuum
Kiss, T., Ullah, A., Terstyanszky, G., Kao, O., Becker, S., Verginadis, Y., Michalas, A., Stankovski, V., Kertesz, A., Ricci, E, Altmann, J., Egger, B., Tusa, F., Kovacs, J. and Lovas, R. 2024. Swarmchestrate: Towards a Fully Decentralised Framework for Orchestrating Applications in the Cloud-to-Edge Continuum. AINA 2024 - 38th International Conference on Advanced Information Networking and Applications. Kitakyushu International Convention Center, Kitakyushu, Japan 17 - 19 Apr 2024 Springer. https://doi.org/10.1007/978-3-031-57931-8_9

Orchestration in the Cloud-to-Things Compute Continuum: Taxonomy, Survey and Future Directions
Ullah, A., Kiss, T., Kovacs, J., Tusa, F., Deslauriers, J., Dagdeviren, H., Arjun, R. and Hamzeh, H. 2023. Orchestration in the Cloud-to-Things Compute Continuum: Taxonomy, Survey and Future Directions. Journal of Cloud Computing: Advances, Systems and Applications. 12 (135). https://doi.org/10.1186/s13677-023-00516-5

DNS++: Dynamic Name Resolution with Homomorphic Encryption Based Privacy
Tusa, F., Griffin, D and Rio, M 2023. DNS++: Dynamic Name Resolution with Homomorphic Encryption Based Privacy. The 32nd International Conference on Computer Communications and Networks (ICCCN 2023). Honolulu, Hawaii (US) 24 - 26 Jul 2023 IEEE . https://doi.org/10.1109/icccn58024.2023.10230137

End-to-end slices to orchestrate resources and services in the cloud-to-edge continuum
Tusa, Francesco and Clayman, Stuart 2023. End-to-end slices to orchestrate resources and services in the cloud-to-edge continuum. Future Generation Computer Systems. 141 (2023), pp. 473-488. https://doi.org/10.1016/j.future.2022.11.026

The NECOS Approach to End-to-End Cloud-Network Slicing as a Service
Clayman, S., Neto, A., Verdi, F., Correa, S., Sampaio, S., Sakelariou, I., Mamatas, L., Pasquini, R., Cardoso, K., Tusa, F., Rothenberg, C. and Serrat, J. 2021. The NECOS Approach to End-to-End Cloud-Network Slicing as a Service. IEEE Communications Magazine. 59 (3), pp. 91-97. https://doi.org/10.1109/mcom.001.2000702

Private Routing in the Internet
Tusa, F., Griffin, D. and Rio, M. 2021. Private Routing in the Internet. 2021 IEEE 22nd International Conference on High Performance Switching and Routing (HPSR). Paris, France 07 - 10 Jun 2010 IEEE . https://doi.org/10.1109/hpsr52026.2021.9481808

The Impact of Encoding and Transport for Massive Real-time IoT Data on Edge Resource Consumption
Francesco Tusa and Stuart Clayman 2021. The Impact of Encoding and Transport for Massive Real-time IoT Data on Edge Resource Consumption. Journal of Grid Computing. 19 32. https://doi.org/10.1007/s10723-021-09577-9

Design and Implementation of an Elastic Monitoring Architecture for Cloud Network Slices
Beltrami, A., MacIel, P.D., Tusa, F., Cesila, C., Rothenberg, C., Pasquini, R. and Verdi, F.L. 2020. Design and Implementation of an Elastic Monitoring Architecture for Cloud Network Slices. NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium. Budapest, Hungary 20 - 24 Apr 2020 IEEE . https://doi.org/10.1109/noms47738.2020.9110415

WIM on-demand - A modular approach for managing network slices
Clayman, S., Tusa, F., Galis, A. and Contreras, L.M. 2020. WIM on-demand - A modular approach for managing network slices. 2020 6th IEEE Conference on Network Softwarization (NetSoft). Ghent, Belgium 29 Jun - 03 Jul 2020 IEEE . https://doi.org/10.1109/netsoft48620.2020.9165342

Multi-PoP Network Slice Deployment: A Feasibility Study
Valsamas, P., Papadimitriou, P., Sakellariou, I., Petridou, S., Mamatas, L., Clayman, S., Tusa, F. and Galis, A. 2019. Multi-PoP Network Slice Deployment: A Feasibility Study. 2019 IEEE 8th International Conference on Cloud Networking (CloudNet). Coimbra, Portugal 04 - 06 Nov 2019 IEEE . https://doi.org/10.1109/cloudnet47604.2019.9064124

Dynamic monitoring of data center slices
Tusa, F., Clayman, S. and Galis, A. 2019. Dynamic monitoring of data center slices. 2019 IEEE Conference on Network Softwarization (NetSoft). Paris, France 24 - 28 Jun 2019 IEEE . https://doi.org/10.1109/netsoft.2019.8806683

Hierarchical service providers on sliced infrastructure
Francesco Tusa, Stuart Clayman, Dario Valocchi and Alex Galis 2019. Hierarchical service providers on sliced infrastructure. Internet Technology Letters. 2 (4) e105. https://doi.org/10.1002/itl2.105

Extending Slices into Data Centers: The VIM on-demand model
Clayman, S., Tusa, F. and Galis, A. 2018. Extending Slices into Data Centers: The VIM on-demand model. 2018 9th International Conference on the Network of the Future (NOF). Poznan, Poland 19 - 21 Nov 2019 IEEE . https://doi.org/10.1109/nof.2018.8597850

Real-Time Management and Control of Monitoring Elements in Dynamic Cloud Network Systems
Tusa, F., Clayman, S. and Galis, A. 2018. Real-Time Management and Control of Monitoring Elements in Dynamic Cloud Network Systems. 2018 IEEE 7th International Conference on Cloud Networking (CloudNet). Tokyo, Japan 22 - 24 Oct 2018 IEEE . https://doi.org/10.1109/cloudnet.2018.8549443

Realizing services and slices across multiple operator domains
Vaishnavi, I., Czentye, J., Gharbaoui, M., Giuliani, G., Haja, D., Harmatos, J., Jocha, D., Kim, J., Martini, B., Melián, J., Monti, P., Nemeth, B., Poe, W.Y., Ramos, A., Sgambelluria, A., Sonkoly, B., Toka, L., Tusa, F., Bernardos, C.J. and Szabo, R. 2018. Realizing services and slices across multiple operator domains. 2018 IEEE/IFIP Network Operations and Management Symposium (NOMS 2018). Taipei, Taiwan 23 - 27 Jul 2018 IEEE . https://doi.org/10.1109/noms.2018.8406168

Multi-Domain Orchestration for the Deployment and Management of Services on a Slice Enabled NFVI
Tusa, F., Clayman, S., Valocchi, D. and Galis, A. 2018. Multi-Domain Orchestration for the Deployment and Management of Services on a Slice Enabled NFVI. 2018 IEEE Conference on Network Function Virtualization and Software Defined Networks (NFV-SDN). Verona, Italy 27 - 29 Oct 2018 IEEE . https://doi.org/10.1109/nfv-sdn.2018.8725769

Big MRI data dissemination and retrieval in a multi-cloud hospital storage system
Galletta, A., Celesti, A., Tusa, F., Fazio, M., Bramanti, P. and Villari, M. 2017. Big MRI data dissemination and retrieval in a multi-cloud hospital storage system. 2017 International Conference on Digital Health. London, United Kingdom 02 - 05 Jul 2017 ACM. https://doi.org/10.1145/3079452.3079507

Analysis of end-to-end multi-domain management and orchestration frameworks for software defined infrastructures: An architectural survey
Guerzoni, R., Vaishnavi, I., Caparros, D.P., Galis, A., Tusa, F., Monti, P., Sganbelluri, A., Biczók, G., Sonkoly, B., Toka, L., Ramos, A., Melián, J., Dugeon, O., Cugini, F., Martini, B., Iovanna, P., Giuliani, G., Figueiredo, R., Contreras-Murillo, L.M., Bernardos, C.J., Santana, C. and Szabo, R. 2017. Analysis of end-to-end multi-domain management and orchestration frameworks for software defined infrastructures: An architectural survey. Transactions on Emerging Telecommunications Technologies. 28 (4) e3103. https://doi.org/10.1002/ett.3103

Orchestration of Network Services across multiple operators: The 5G Exchange prototype
Sgambelluri, A., Tusa, F., Gharbaoui, M., Maini, E., Toka, L., Perez, J.M., Paolucci, F., Martini, B., Poe, W.Y., Hernandes, J.M., Muhammed, A., Ramos, A., De DIos, O.G., Sonkoly, B., Monti, P., Vaishnavi, I., Bernardos, C.J. and Szabo, R. 2017. Orchestration of Network Services across multiple operators: The 5G Exchange prototype. 2017 European Conference on Networks and Communications (EuCNC). Oulu, Finland 15 Mar - 12 Jun 2017 IEEE . https://doi.org/10.1109/eucnc.2017.7980666

System architecture of Intelligent Monitoring in multi-domain orchestration
Poe, W.Y., Vaishnavi, I., Tusa, F., Melian, J. and Ramos, A. 2017. System architecture of Intelligent Monitoring in multi-domain orchestration. 2017 European Conference on Networks and Communications (EuCNC). Oulu, Finland 15 Mar - 12 Jun 2017 IEEE . https://doi.org/10.1109/eucnc.2017.7980673

A multi-operator network service orchestration prototype: The 5G exchange
Sgambelluri, A., Milani, A., Czentye, J., Melian, J., Poe, W.Y., Tusa, F., De Dios, O.G., Sonkoly, B., Gharbaoui, M., Paolucci, F., Maini, E., Giuliani, G., Ramos, A., Monti, P., Contreras-Murillo, L.M., Vaishnavi, I., Bernardos Cano, C.J. and Szabo, R. 2017. A multi-operator network service orchestration prototype: The 5G exchange. 2017 Optical Fiber Communications Conference and Exhibition (OFC 2017). Los Angeles, California, United States 19 - 23 Mar 2017 Optical Society of America.

Towards energy sustainability in federated and interoperable clouds
Celesti, A., Puliafito, A., Tusa, F. and Villari, M. 2014. Towards energy sustainability in federated and interoperable clouds. in: Sustainable Practices: Concepts, Methodologies, Tools, and Applications IGI Global. pp. 279-301

How to exploit grid infrastructures for federated cloud purposes with CLEVER
Tusa, F., Paone, M., Puliafito, A. and Villari, M. 2013. How to exploit grid infrastructures for federated cloud purposes with CLEVER. International Journal of Computational Science and Engineering. 8 (3), pp. 253-268. https://doi.org/10.1504/ijcse.2013.055355

Data Reliability in Multi-provider Cloud Storage Service with RRNS
Villari, M., Celesti, A., Tusa, F. and Puliafito, A. 2013. Data Reliability in Multi-provider Cloud Storage Service with RRNS. in: Canal, C. and Villari, M. (ed.) Advances in Service-Oriented and Cloud Computing: ESOCC 2013 Springer. pp. 83-93

Energy sustainability in cooperating clouds
Celesti, A., Puliafito, A., Tusa, F. and Villari, M. Forthcoming. Energy sustainability in cooperating clouds. 3rd International Conference on Cloud Computing and Services Science (CLOSER 2013). Aachen, Germany 08 - 10 May 2013

How the Dataweb can support cloud federation: Service representation and secure data exchange
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2012. How the Dataweb can support cloud federation: Service representation and secure data exchange. 2012 Second Symposium on Network Cloud Computing and Applications. London, UK 03 - 04 Dec 2012 IEEE . https://doi.org/10.1109/ncca.2012.26

How to federate VISION clouds through SAML/Shibboleth authentication
Villari, M., Tusa, F., Celesti, A. and Puliafito, A. 2012. How to federate VISION clouds through SAML/Shibboleth authentication. European Conference on Service-Oriented and Cloud Computing (ESOCC 2012). Bertinoro, Italy 19 2012 - 21 Sep 2021 Springer. https://doi.org/10.1007/978-3-642-33427-6_22

Integration of CLEVER clouds with third party software systems through a REST web service interface
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2012. Integration of CLEVER clouds with third party software systems through a REST web service interface. 2012 IEEE Symposium on Computers and Communications (ISCC). Cappadocia, Turkey 01 - 04 Jul 2012 IEEE . https://doi.org/10.1109/iscc.2012.6249403

How a structured testbed enables the rapid development and deployment of cloud services: The VISION Cloud use case
Villari, M., Longo, F., Paone, M., Tusa, F. and Jaeger, M.C. 2012. How a structured testbed enables the rapid development and deployment of cloud services: The VISION Cloud use case. 2012 IEEE Symposium on Computers and Communications (ISCC). Cappadocia, Turkey 01 - 04 Jul 2012 IEEE . https://doi.org/10.1109/iscc.2012.6249402

Toward cloud federation: Concepts and challenges
Celesti, A., Tusa, F. and Villari, M. 2012. Toward cloud federation: Concepts and challenges. in: Villari, M., Brandic, I. and Tusa, F. (ed.) Achieving Federated and Self-Manageable Cloud Infrastructures: Theory and Practice IGI Global.

CLEVER: A cloud middleware beyond the federation
Tusa, F., Paone, M. and Villari, M. 2012. CLEVER: A cloud middleware beyond the federation. in: Villari, M., Brandic, I. and Tusa, F. (ed.) Achieving Federated and Self-Manageable Cloud Infrastructures: Theory and Practice IGI Global. pp. 219-241

Intercloud: The future of cloud computing. Concepts and advantages
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2012. Intercloud: The future of cloud computing. Concepts and advantages. in: Wang, L., Ranjan, R., Chen, J. and Benatallah, B. (ed.) Cloud Computing: Methodology, Systems, and Applications CRC Press.

How CLEVER-based clouds conceive horizontal and vertical federations
Tusa, F., Celesti, A., Paone, M., Villari, M. and Puliafito, A. 2011. How CLEVER-based clouds conceive horizontal and vertical federations. 2011 IEEE Symposium on Computers and Communications (ISCC). Kerkyra, Greece 28 Jun - 01 Jul 2011 IEEE . https://doi.org/10.1109/iscc.2011.5984011

An approach to enable cloud service providers to arrange IaaS, PaaS, and SaaS using external virtualization infrastructures
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2011. An approach to enable cloud service providers to arrange IaaS, PaaS, and SaaS using external virtualization infrastructures. 2011 IEEE World Congress on Services. Washington, DC, USA 04 - 09 Jul 2011 IEEE . https://doi.org/10.1109/services.2011.92

CLEVER: A cloud cross-computing platform leveraging GRID resources
Tusa, F., Paone, M., Villari, M. and Puliafito, A. 2011. CLEVER: A cloud cross-computing platform leveraging GRID resources. 2011 Fourth IEEE International Conference on Utility and Cloud Computing. Melbourne, VIC, Australia 05 - 08 Dec 2011 IEEE . https://doi.org/10.1109/ucc.2011.65

AAA in a cloud-based virtual DIME network architecture (DNA)
Tusa, F., Celesti, A. and Mikkilineni, R. 2011. AAA in a cloud-based virtual DIME network architecture (DNA). 2011 IEEE 20th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises. Paris, France 27 - 29 Jun 2011 IEEE . https://doi.org/10.1109/wetice.2011.20

Security and cloud computing: Intercloud identity management infrastructure
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2010. Security and cloud computing: Intercloud identity management infrastructure. 2010 19th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises. Larissa, Greece 28 - 30 Jun 2010 IEEE . https://doi.org/10.1109/wetice.2010.49

CLEVER: A cloud-enabled virtual environment
Tusa, F., Paone, M., Villari, M. and Puliafito, A. 2010. CLEVER: A cloud-enabled virtual environment. The IEEE symposium on Computers and Communications 2010. Riccione, Italy 22 - 25 Jun 2010 IEEE . https://doi.org/10.1109/iscc.2010.5546555

Mitigating security threats to large-scale cross border virtualization infrastructures
Massonet, P., Naqvi, S., Tusa, F., Villari, M. and Latanicki, J. 2010. Mitigating security threats to large-scale cross border virtualization infrastructures. in: Cloud Computing: First International Conference, CloudComp 2009, Munich, Germany, October 19-21, 2009, Revised Selected Papers Springer. pp. 73-82

Improving virtual machine migration in federated cloud environments
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2010. Improving virtual machine migration in federated cloud environments. 2010 2nd International Conference on Evolving Internet. Valencia, Spain 20 - 25 Sep 2010 IEEE . https://doi.org/10.1109/internet.2010.20

Credential management enforcement and secure data storage in gLite
Tusa, F., Villari, M. and Puliafito, A. 2010. Credential management enforcement and secure data storage in gLite. International Journal of Distributed Systems and Technologies. 1 (1) 5. https://doi.org/10.4018/jdst.2010090805

Three-phase Cross-Cloud federation model: The Cloud SSO authentication
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2010. Three-phase Cross-Cloud federation model: The Cloud SSO authentication. 2010 Second International Conference on Advances in Future Internet. Venice, Italy 18 - 25 Jul 2010 IEEE . https://doi.org/10.1109/afin.2010.23

How to enhance cloud architectures to enable cross-federation
Celesti, A., Tusa, F., Villari, M. and Puliafito, A. 2010. How to enhance cloud architectures to enable cross-federation. 2010 IEEE 3rd International Conference on Cloud Computing. Miami, FL, USA 05 - 10 Jul 2010 IEEE . https://doi.org/10.1109/cloud.2010.46

Design and implementation of a secure XML-based grid file storage system with reliability features
Tusa, F., Villari, M. and Puliafito, A. 2009. Design and implementation of a secure XML-based grid file storage system with reliability features. 2009 IEEE Symposium on Computers and Communications. Sousse, Tunisia 05 - 08 Jul 2009 IEEE . https://doi.org/10.1109/iscc.2009.5202280

Design and implementation of an XML-based grid file storage system with security features
Tusa, F., Villari, M. and Puliafito, A. 2009. Design and implementation of an XML-based grid file storage system with security features. 2009 18th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises. Groningen, Netherlands 29 Jun - 01 Jul 2009 IEEE . https://doi.org/10.1109/wetice.2009.31

Permalink - https://westminsterresearch.westminster.ac.uk/item/w42qx/homomorphic-routing-private-data-forwarding-in-the-internet


Share this

Usage statistics

71 total views
33 total downloads
These values cover views and downloads from WestminsterResearch and are for the period from September 2nd 2018, when this repository was created.