Implementation of IPSec Protocol

2012 Second International Conference on Advanced Computing & Communication Technologies Pub Date : 2012-01-07 DOI:10.1109/ACCT.2012.64

H. Dhall, D. Dhall, S. Batra, P. Rani

{"title":"Implementation of IPSec Protocol","authors":"H. Dhall, D. Dhall, S. Batra, P. Rani","doi":"10.1109/ACCT.2012.64","DOIUrl":null,"url":null,"abstract":"The aim of this paper is to present the implementation of IPSec Protocol. IPSec protocol provides an end user to end user traffic with ensuring authenticity and confidentiality of data packet. IP sec is a successor of the ISO standard Network Layer Security Protocol (NLSP). NLSP was based on the SP3 protocol that was published by NIST, but designed by the Secure Data Network System project of the National Security Administration (NSA). IPSec is officially specified by the Internet Engineering Task Force (IETF) in a series of Request for Comments addressing various components and extensions, including the official capitalization style of the term. IPSec defines encryption, authentication and key management routines for ensuring the privacy, integrity and authenticity of data in a VPN as the information traverses public IP networks. Because IPSec requires each end of the tunnel to have a unique address, special care must be taken when implementing IPSec VPNs in environments using private IP addressing based on network address translation. Fortunately, several vendors offer solutions to this problem. However, they add more management complexity.","PeriodicalId":396313,"journal":{"name":"2012 Second International Conference on Advanced Computing & Communication Technologies","volume":"57 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-01-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"16","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 Second International Conference on Advanced Computing & Communication Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ACCT.2012.64","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 16

Abstract

The aim of this paper is to present the implementation of IPSec Protocol. IPSec protocol provides an end user to end user traffic with ensuring authenticity and confidentiality of data packet. IP sec is a successor of the ISO standard Network Layer Security Protocol (NLSP). NLSP was based on the SP3 protocol that was published by NIST, but designed by the Secure Data Network System project of the National Security Administration (NSA). IPSec is officially specified by the Internet Engineering Task Force (IETF) in a series of Request for Comments addressing various components and extensions, including the official capitalization style of the term. IPSec defines encryption, authentication and key management routines for ensuring the privacy, integrity and authenticity of data in a VPN as the information traverses public IP networks. Because IPSec requires each end of the tunnel to have a unique address, special care must be taken when implementing IPSec VPNs in environments using private IP addressing based on network address translation. Fortunately, several vendors offer solutions to this problem. However, they add more management complexity.

查看原文本刊更多论文

IPSec协议的实现

本文的目的是介绍IPSec协议的实现。IPSec协议为终端用户和终端用户之间的流量提供了数据包的真实性和保密性。IP sec是ISO标准网络层安全协议(NLSP)的后继协议。NLSP基于NIST发布的SP3协议，但由美国国家安全局(NSA)的安全数据网络系统项目设计。IPSec是由Internet Engineering Task Force (IETF)在一系列的Request for Comments中正式指定的，它们处理各种组件和扩展，包括术语的官方大写样式。IPSec定义了加密、认证和密钥管理程序，以确保VPN中的数据在通过公网IP网络时的保密性、完整性和真实性。由于IPSec要求隧道的每一端都有唯一的地址，因此在使用基于网络地址转换的私有IP寻址的环境中实现IPSec vpn时必须特别小心。幸运的是，有几个供应商提供了解决这个问题的方案。然而，它们增加了管理的复杂性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2012 Second International Conference on Advanced Computing & Communication Technologies

自引率

0.00%

发文量