Title :
Redesigning of IPSec for interworking with satellite Performance Enhancing Proxies
Author :
Bhutta, Muhammad Nasir Mumtaz ; Cruickshank, Haitham ; Ashworth, John ; Moseley, Martin
Author_Institution :
Center for Commun. Syst. Res., Univ. of Surrey, Guildford, UK
Abstract :
Performance Enhancing Proxies (PEPs) are used in satellite networks for better performance of the TCP/IP applications. Multi-layer IPSec (ML-IPSec) resolves the conflict between end-to-end security in standard IPSec and working of PEPs. This paper presents the concept and detailed design of ML-IPSec by breaking the IP datagram into three zones while enabling the intermediate nodes to access the TCP header and HTTP header information. The paper also presents an efficient interworking scheme between ML-IPSec and secure IP multicast using the Logical Key Hierarchy for key distribution.
Keywords :
IP networks; computer network security; hypermedia; information retrieval; satellite communication; transport protocols; HTTP header information; IP datagram; ML-IPSec; PEP; TCP header; TCP-IP application; end-to-end security; interworking scheme; key distribution; logical key hierarchy; multilayer IPSec; satellite networks; satellite performance enhancing proxies; secure IP multicast; standard IPSec; Authentication; Encryption; IP networks; Logic gates; Protocols; IPSec; ML-IPSec; PEP; TCP and HTTP;
Conference_Titel :
Communications and Networking in China (CHINACOM), 2011 6th International ICST Conference on
Conference_Location :
Harbin
Print_ISBN :
978-1-4577-0100-9
DOI :
10.1109/ChinaCom.2011.6158321
