Research Fellow, PARC
TTI/Vanguard at PARC
February 25, 2010
Palo Alto Research Center
Content-centric Networking (CCN)
is a communications architecture
based on dissemination
rather than conversation.
(at the lowest level, you talk about
named data, not to some server)
CCN offers ...
• (provably) optimal content distribution
• painless mobility, wireless, virtualization, ...
• same scalability & efficiency as TCP/IP
• simple, secure, robust configuration
• an easy, incremental, evolutionary path
• much better security
Internet security sucks
and not because we’re not trying hard enough
Files, hosts and
network connections are
containers for information
• A secured perimeter is the only way to
• For today’s business, any realistic perimeter
encloses the planet.
Forget containers –
secure the content
Do it as the final production step to minimize
Ron Rivest’s SDSI has shown this works if content
is augmented so any consumer can assess
from the data:
• Validity (is data intact and complete?)
• Relevance (what question does this answer?)
• Provenance (who asserts this is an answer?)
nytimes.com/web/george/desktop public key
Signed by nytimes.com/web/george
Signed by nytimes.com/web
Signed by nytimes.com
• Rich web of arises from signed content:
• Attacks haveand be consistent with
links – get exponentially
harder as information base grows.
! Strong security is emergent & effortless.
Information on CCN is available at
including a GPL’d open-source release
of our current research prototype.