1. Home
  2. Networking
  3. Integrated cisco and unix network architectures

Multicast Security

Discussion of multicast security issues is primarily carried out in the IETF Multicast Security (msec) Working Group. It deals with secure group communication for large groups involving a single trusted entity (authoritative group controller), which establishes and enforces the group's security policy and join/leave procedures to secure groups.

Of course, group key management and distribution involving a mechanism called group security associations (GSAs) is essential to the overall architecture. A GSA represents the multicast equivalent of a unicast security association (SA) that is well known from the IPSec protocol framework.

Another important aspect of multicast security is the delicate issue of (distributed) denial of service ([D]DoS) in multicast environments. For further details, look at the foundation document for multicast security, the IETF draft "The Multicast Security Architecture" (http://www.ietf.org/internet-drafts/draft-ietf-msec-arch-04.txt). This document describes an end-to-end security framework independent of aspects such as NAT, multicast routing, admission control protocols, and reliable multicast mechanisms.



    		Command Syntax Conventions
    		Chapter 1. Operating System Issues and Features-The Big Picture
    		Chapter 2. User-Space Routing Software
    		Chapter 3. Kernel Requirements for a Full-Featured Lab
    		Chapter 4. Gateway WAN/Metro Interfaces
    		Chapter 5. Ethernet and VLANs
    		Chapter 6. The Analyzer Toolbox, DHCP, and CDP
    		Chapter 7. The UNIX Routing and ARP Tables
    		Chapter 8. Static Routing Concepts
    		Chapter 9. Dynamic Routing Protocols-Interior Gateway Protocols
    		Chapter 10. ISP Connectivity with BGPv4-An Exterior Gateway Path-Vector Routing Protocol for Interdomain Routing
    		Chapter 11. VPN Technologies, Tunnel Interfaces, and Architectures
    		Chapter 12. Designing for High Availability
    		Chapter 13. Policy Routing, Bandwidth Management, and QoS
    		Chapter 14. Multicast Architectures
    		Multicast Deployments
    		Multicast Addresses and Scope
    		Internet Group Management Protocol (IGMP) and Cisco Group Management Protocol (CGMP)
    		mrouted and DVMRP
    		The ip and smcroute Multicast Utilities
    		PIM Operation and Daemons
    		Multicast Open Shortest Path First (MOSPF)
    		Multicast Source Discovery Protocol (MSDP)
    		BGPv4 Multicast Extensions (Multiprotocol BGP, RFC 2858)
    		Multicast Transport Layer Protocols
    		Multicast Invitations and Session Announcements
    		Multicast Security
    		Summary
    		Recommended Reading
    		Chapter 15. Network Address Translation
    		Appendix A. UNIX Kernel Configuration Files
    		Appendix B. The FreeBSD Netgraph Facility