Research Article

Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems

Volume: 38 Number: 2 June 30, 2026
TR EN

Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems

Abstract

The rapid growth of end-to-end (E2E) encrypted traffic strains traditional in-network caching, heightening concerns about its viability. This paper charts the design space of E2E-compatible caching under an honest-but-curious Internet service provider (ISP), assuming honest clients and content providers. We group prior work into four deployment-oriented families—TLS middlebox extensions, Secure Content Delegation (SCD), dispatcher-aided schemes, and multi-Content Provider (multi-CP) cache partitioning—and qualitatively compare them on deployability, security/privacy, and performance. We analyze recurring risks such as linkability and popularity leakage, relate them to cache hit ratio and latency, and distill practical levers (e.g., identifier refresh cadence, chunking, key-release timing). We also consolidate open problems, from edge key management and multi-CP authorization to popularity hiding and mobility robustness. Overall, the paper provides a concise, standards-aware guide for researchers and operators and highlights how the shift toward QUIC/HTTP/3 increasingly constrains what can be deployed in practice. Keywords: in-network caching, end-to-end encryption, TLS/HTTPS, secure content delegation, network neutrality, deployability, privacy preservation.

Keywords

References

  1. G. S. Paschos, G. Iosifidis, M. Tao, D. Towsley, and G. Caire, “The role of caching in future communication systems and networks,” IEEE Journal on Selected Areas in Communications, 36(6), 1111– 1125, (2018).
  2. H. Yang, H. Pan, and L. Ma, “A review on software defined content delivery network: a novel combination of cdn and sdn,” IEEE Access, (2023).
  3. ericsson.com, “Mobile data traffic outlook,” https://www.ericsson.com/en/reports-and-papers/mobility-report/dataforecasts/mobile-traffic-forecast, (Accessed on 20/11/2025).
  4. G. Paschos, E. Bastug, I. Land, G. Caire, and M. Debbah, “Wireless caching: Technical misconceptions and business barriers,” IEEE Communications Magazine, 54(8), 16–22, (2016).
  5. K. Xue, P. He, J. Yang, Q. Xia, and D. S. Wei, “SCD2: Secure content delivery and deduplication with multiple content providers in information-centric networking,” IEEE/ACM Transactions on Networking, 30(4), 1849–1864, (2022).
  6. B. Mao, J. Liu, Y. Wu, and N. Kato, “Security and privacy on 6G network edge: A survey,” IEEE Communications Surveys & Tutorials, 25(2), 1095-1127, (2023).
  7. D. Naylor, K. Schomp, M. Varvello, I. Leontiadis, J. Blackburn, D. R. López, K. Papagiannaki, P. Rodriguez Rodriguez, and P. Steenkiste, “Multi-context TLS (mcTLS): Enabling secure in-network functionality in TLS,” ACM SIGCOMM Computer Communication Review, 45(4), 199–212, (2015).
  8. D. Naylor, R. Li, C. Gkantsidis, T. Karagiannis, and P. Steenkiste, “And then there were more: Secure communication for more than two parties,” in Proceedings of the 13th International Conference on Emerging Networking Experiments and Technologies, 88–100, (2017).

Details

Primary Language

English

Subjects

Information Security and Cryptology, System and Network Security, Data and Information Privacy

Journal Section

Research Article

Authors

Gıyaseddin Bayrak This is me
0000-0001-5495-6903
Czech Republic

Publication Date

June 30, 2026

Submission Date

November 21, 2025

Acceptance Date

March 16, 2026

Published in Issue

Year 2026 Volume: 38 Number: 2

APA
Korçak, Ö., & Bayrak, G. (2026). Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems. International Journal of Advances in Engineering and Pure Sciences, 38(2), 244-256. https://doi.org/10.7240/jeps.1827700
AMA
1.Korçak Ö, Bayrak G. Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems. JEPS. 2026;38(2):244-256. doi:10.7240/jeps.1827700
Chicago
Korçak, Ömer, and Gıyaseddin Bayrak. 2026. “Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems”. International Journal of Advances in Engineering and Pure Sciences 38 (2): 244-56. https://doi.org/10.7240/jeps.1827700.
EndNote
Korçak Ö, Bayrak G (June 1, 2026) Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems. International Journal of Advances in Engineering and Pure Sciences 38 2 244–256.
IEEE
[1]Ö. Korçak and G. Bayrak, “Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems”, JEPS, vol. 38, no. 2, pp. 244–256, June 2026, doi: 10.7240/jeps.1827700.
ISNAD
Korçak, Ömer - Bayrak, Gıyaseddin. “Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems”. International Journal of Advances in Engineering and Pure Sciences 38/2 (June 1, 2026): 244-256. https://doi.org/10.7240/jeps.1827700.
JAMA
1.Korçak Ö, Bayrak G. Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems. JEPS. 2026;38:244–256.
MLA
Korçak, Ömer, and Gıyaseddin Bayrak. “Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems”. International Journal of Advances in Engineering and Pure Sciences, vol. 38, no. 2, June 2026, pp. 244-56, doi:10.7240/jeps.1827700.
Vancouver
1.Ömer Korçak, Gıyaseddin Bayrak. Architectures for Secure and Deployable In-Network Caching in Encrypted Content Delivery Systems. JEPS. 2026 Jun. 1;38(2):244-56. doi:10.7240/jeps.1827700