Preventing theft of quality of service on open platforms

Kwang-Hyun Baek; Sean W. Smith

1st International ICST Workshop on Security and QoS in Communication Networks

Research Article

Preventing theft of quality of service on open platforms

Cite: BibTeX Plain Text

@INPROCEEDINGS{10.1109/SECCMW.2005.1588319,
    author={Kwang-Hyun Baek and Sean W. Smith},
    title={Preventing theft of quality of service on open platforms},
    proceedings={1st International ICST Workshop on Security and QoS in Communication Networks},
    publisher={IEEE},
    proceedings_a={SECQOS},
    year={2006},
    month={2},
    keywords={},
    doi={10.1109/SECCMW.2005.1588319}
}

Kwang-Hyun Baek
Sean W. Smith
Year: 2006
Preventing theft of quality of service on open platforms
SECQOS
IEEE
DOI: 10.1109/SECCMW.2005.1588319

Kwang-Hyun Baek¹^,*, Sean W. Smith²

1: Department of Computer Science, Dartmouth College, Hanover,
2: Department of Computer Science, Dartmouth College, Hanover

*Contact email: kwang-hyun.baek@Dartmouth.EDU

Abstract

As multiple types of traffic converge onto one network, frequently wireless, enterprises face a tradeoff between effectiveness and security. Some types of traffic, such as voice-over-IP (VoIP), require certain quality of service (QoS) guarantees to be effective. The end client platform is in the best position to know which packets deserve this special handling. In many environments (such as universities), end users relish having control over their own machines. However, if end users administer their own machines, nothing stops dishonest ones from marking undeserving traffic for high QoS. How can an enterprise ensure that only appropriate traffic receives high QoS, while also allowing end users to retain control over their own machines? In this paper, we present the design and prototype of a solution, using SELinux, TCPA/TCG hardware, Diffserv, 802.1x, and EAP-TLS.

Published: 2006-02-06
Publisher: IEEE

: http://dx.doi.org/10.1109/SECCMW.2005.1588319