As a network layer protocol, NDN fetches named, secured data pieces. One might argue that DNS with
Question:
As a network layer protocol, NDN fetches named, secured data pieces. One might argue that DNS with DNSSEC also fetches named, secured data pieces, makinga DNS query remotely analogous to an NDN Interest packet for fetching named data, and a DNS reply an NDN data packet. One obvious difference is that DNS does the job at the application layer, while NDN's Interest-Data packet exchange works at network layer.
3.1DNS' query/reply exchange runs over UDP/IP. Can NDN's Interest/Data packet exchange also run over UDP/IP? If yes: wouldn't this mess up protocol layering? If not, what makes doing so impossible? Please explain your answer.
3.2 Both DNS and NDN cache retrieved data, however the locations of their caches differ. Please explain where DNS and NDN can cache fetched data, and why they are different.
3.3Given each DNS domain has its full power to assign names under its own namespace, the owner of a DNS domain, say example.com, believes that she could take on the NDN's idea and make example.com as its own trust anchor. That is, example.com could build a self-signed certificate, and make the verifications of all the DNS names under example.com terminate at this trust anchor, instead of terminating at the root domain's key. Would this idea work? Please explain why you think it would, or would not, work.
3.4TheDNSSEC deployment requires that each DNS reply carry the RRSIG for the returned DSN data RRset, and NDN also mandates that all data packets must be signed. Both DNS and NDN can retrieve the signing keys in the same way as they retrieving their data. However NDN uses "trust schema" to define trust policies (trust schema is described in the reading for lecture-17"An Overview of Security Support in Named Data Networking"), but DNSSEC has no such concept. Why doesn't DNSSEC need something like trust schema?
Principles Of Information Security
ISBN: 9780357506431
7th Edition
Authors: Michael E. Whitman, Herbert J. Mattord