A simplified and an efficient packet level Internet access control scheme

Author

Iqbal, M. Salman ; Poon, F.S.F.

Author_Institution

Inst. of Ind. Autom., Islamabad, Pakistan

fYear

1992

fDate

16-20 Nov 1992

Firstpage

963

Abstract

An Internet access control protocol is described. The purpose of the scheme is to allow controlled access to the internal resources of the network, and only trusted systems can gain access to external networks. This scheme is a variant of the original scheme of Iqbal and Poon (1992) which required two levels of authentication. However, it is possible to simplify the scheme and retain the security features with only the packet level authentication. The scheme uses the RSA and the DES security algorithms to enforce access controls on Internet communication requests. The simplified access control scheme does not require session initiation authentication, hence eliminating the overheads of the RSA encryption and decryption process at the hosts and network access control gateways. The overheads incurred due to the extra access control procedures are found to be smaller in comparison with the original Internet access control scheme and the visa scheme (Estrin and Tsudik, 1987)

Keywords

authorisation; computer networks; internetworking; message authentication; packet switching; protocols; DES algorithm; Internet communication requests; RSA algorithm; authentication; computer networks; external networks; internal resources; packet level Internet access control scheme; protocol; security algorithms; security features; trusted systems; Access control; Access protocols; Authentication; Automatic control; Automation; Communication system security; Electrical equipment industry; Internet; Permission; Protection;

fLanguage

English

Publisher

ieee

Conference_Titel

Singapore ICCS/ISITA '92. 'Communications on the Move'

Print_ISBN

0-7803-0803-4

Type

conf

DOI

10.1109/ICCS.1992.255119

Filename

255119