Title :
A simplified and an efficient packet level Internet access control scheme
Author :
Iqbal, M. Salman ; Poon, F.S.F.
Author_Institution :
Inst. of Ind. Autom., Islamabad, Pakistan
Abstract :
An Internet access control protocol is described. The purpose of the scheme is to allow controlled access to the internal resources of the network, and only trusted systems can gain access to external networks. This scheme is a variant of the original scheme of Iqbal and Poon (1992) which required two levels of authentication. However, it is possible to simplify the scheme and retain the security features with only the packet level authentication. The scheme uses the RSA and the DES security algorithms to enforce access controls on Internet communication requests. The simplified access control scheme does not require session initiation authentication, hence eliminating the overheads of the RSA encryption and decryption process at the hosts and network access control gateways. The overheads incurred due to the extra access control procedures are found to be smaller in comparison with the original Internet access control scheme and the visa scheme (Estrin and Tsudik, 1987)
Keywords :
authorisation; computer networks; internetworking; message authentication; packet switching; protocols; DES algorithm; Internet communication requests; RSA algorithm; authentication; computer networks; external networks; internal resources; packet level Internet access control scheme; protocol; security algorithms; security features; trusted systems; Access control; Access protocols; Authentication; Automatic control; Automation; Communication system security; Electrical equipment industry; Internet; Permission; Protection;
Conference_Titel :
Singapore ICCS/ISITA '92. 'Communications on the Move'
Print_ISBN :
0-7803-0803-4
DOI :
10.1109/ICCS.1992.255119
