With the recent growth of internets, large networks connecting heterogeneous entities, access control is an issue no longer confined to individual hosts. Recent literature suggests that authentication may have to be performed in gateways as well as on an end-to-end basis. In this paper we discuss the implications of fragmentation and dynamic routing on gateway-level authentication in packet-switched networks like DARPA Internet. Two algorithms are presented that permit fragmentation and dynamic routing to some extent, while allowing the gateways to authenticate successive packets belonging to authorized connections.
Unfortunately, ACM prohibits us from displaying non-influential references for this paper.
To see the full reference list, please visit http://dl.acm.org/citation.cfm?id=45154.