发布求助
文献互助 智能选刊 最新文献

A High-Throughput Hardware Implementation of NAT Traversal For IPSEC VPN

Int. J. Commun. Networks Inf. Secur. Pub Date : 2022-04-15 DOI:10.17762/ijcnis.v14i1.5260
Tran Sy Nam, Van‐Phuc Hoang, Nguyen Van Long
{"title":"A High-Throughput Hardware Implementation of NAT Traversal For IPSEC VPN","authors":"Tran Sy Nam, Van‐Phuc Hoang, Nguyen Van Long","doi":"10.17762/ijcnis.v14i1.5260","DOIUrl":null,"url":null,"abstract":"In this paper, we present a high-throughput FPGA implementation of IPSec core. The core supports both NAT and non-NAT mode and can be used in high speed security gateway devices. Although IPSec ESP is very computing intensive for its cryptography process, our implementation shows that it can achieve high throughput and low lantency. The system is realized on the Zynq XC7Z045 from Xilinx and was verified and tested in practice. Results show that the design can gives a peak throughput of 5.721 Gbps for the IPSec ESP tunnel mode in NAT mode and 7.753 Gbps in non-NAT mode using one single AES encrypt core. We also compare the performance of the core when running in other mode of encryption.","PeriodicalId":232613,"journal":{"name":"Int. J. Commun. Networks Inf. Secur.","volume":"47 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-04-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Int. J. Commun. Networks Inf. Secur.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.17762/ijcnis.v14i1.5260","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2

Abstract

In this paper, we present a high-throughput FPGA implementation of IPSec core. The core supports both NAT and non-NAT mode and can be used in high speed security gateway devices. Although IPSec ESP is very computing intensive for its cryptography process, our implementation shows that it can achieve high throughput and low lantency. The system is realized on the Zynq XC7Z045 from Xilinx and was verified and tested in practice. Results show that the design can gives a peak throughput of 5.721 Gbps for the IPSec ESP tunnel mode in NAT mode and 7.753 Gbps in non-NAT mode using one single AES encrypt core. We also compare the performance of the core when running in other mode of encryption.
分享
查看原文 本刊更多论文
IPSEC VPN中NAT穿越的高吞吐量硬件实现
在本文中,我们提出了一个高吞吐量的FPGA实现IPSec核心。该核心支持NAT和非NAT两种方式,可用于高速安全网关设备。虽然IPSec ESP在加密过程中需要大量的计算,但我们的实现表明它可以实现高吞吐量和低延迟。该系统在赛灵思公司的Zynq XC7Z045单片机上实现,并在实践中进行了验证和测试。结果表明,该设计在NAT模式下IPSec ESP隧道模式的峰值吞吐量为5.721 Gbps,在非NAT模式下使用单个AES加密核的峰值吞吐量为7.753 Gbps。我们还比较了内核在其他加密模式下运行时的性能。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
Int. J. Commun. Networks Inf. Secur.
Int. J. Commun. Networks Inf. Secur.
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信