
handle: 2268/319952
In-Situ Operations, Administration, and Maintenance (IOAM) gathers telemetry and operational information along a path, within packets. Up to now, IOAM header and data are carried in plain text without any protection against data-altering nodes or middleboxes. However, deploying IOAM in an untrusted or semi-trusted environment requires at least integrity protection. This paper leverages and analyzes work in progress about \ioam integrity protection and explains why the currently proposed solution can be improved. Accordingly, several alternative solutions are discussed, implemented in the Linux kernel, and evaluated. Based on the results, guidance is provided for standardization. Our source code is publicly available.
CyberExcellence project funded by the Walloon Region, under number 2110186
validation, Sciences informatiques, threats, IPv6, integrity, Computer science, IOAM, Engineering, computing & technology, Ingénierie, informatique & technologie
validation, Sciences informatiques, threats, IPv6, integrity, Computer science, IOAM, Engineering, computing & technology, Ingénierie, informatique & technologie
| selected citations These citations are derived from selected sources. This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | 1 | |
| popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network. | Average | |
| influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | Average | |
| impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network. | Average |
