Design and Implementation of the communication protocol for efficient CBC mode processing in IPSec

Author

Park, Sang-Hyun ; You, Yong-Duck ; Choi, Hoon

Author_Institution

Nat. Security Res. Inst., Daejeon

fYear

2006

fDate

14-17 Nov. 2006

Firstpage

1

Lastpage

4

Abstract

The IV (initial vector) used in CBC mode must be varied per message, must not be used arbitrarily by attackers, and must be created randomly. To meet these requirements, IV encrypted before a message is sent. Note, however, that this method requires additional steps for IV encryption before sending a message and decryption by the receiver. This paper proposed the method that does not require IV encryption/decryption and developed the lightweight protocol and security API specification based on the proposed method. As a result of the experiment, system performance improvement can be achieved. In an environment with small-sized packet data, in particular, greater system performance improvement can be achieved. Moreover, since small-sized random numbers are sent without the entire IV, sending overhead can be reduced considerably compared to the existing methods

Keywords

IP networks; application program interfaces; cryptographic protocols; telecommunication security; CBC mode processing; IPSec; IV encryption; Internet protocol security; application program interfaces; cipher block chaining; communication protocol; decryption; initial vector; security API specification; Authentication; Computer architecture; Cryptography; Design engineering; Electrostatic precipitators; National security; Process design; Protection; Protocols; System performance;

fLanguage

English

Publisher

ieee

Conference_Titel

TENCON 2006. 2006 IEEE Region 10 Conference

Conference_Location

Hong Kong

Print_ISBN

1-4244-0548-3

Electronic_ISBN

1-4244-0549-1

Type

conf

DOI

10.1109/TENCON.2006.343817

Filename

4142492