Title :
A Modified Version of IKEv2 for Using in Client-Server Environments
Author :
Karbasioun, Mohammad Mahdi ; Bere, Mehdi ; Taji, Bahareh
Author_Institution :
Islamic Azad Univ. of Khomeini shahr, Khomeini Shahr
Abstract :
New version of Internet key exchange protocol (IKEv2) is introduced in this article. Despite of its several advantages, it suffers from some deficiencies when applying in client-server environments. The main problem is regarded to its inefficient method for resisting against DoS attacks. A new protocol is proposed in this article, in which besides keeping maximum fidelity to IKEv2 framework, new necessary features are added. More resistance against DoS attacks without forcing extra delays, and identity protection of initiators (clients) against active attackers are the advantage of using this protocol. Also asymmetric distribution of calculations scheme, introduced in this protocol, makes it unique, while comparing with other protocols.
Keywords :
IP networks; Internet; client-server systems; cryptographic protocols; telecommunication security; DoS attacks; IP security mechanism; Internet key exchange protocol; client-server environments; Authentication; Communication networks; Computer crime; Cryptographic protocols; Cryptography; Data security; Information security; Internet; Protection; Standardization; Client-Server; DoS attack; IKEv2; Signature;
Conference_Titel :
Communication Networks and Services Research Conference, 2008. CNSR 2008. 6th Annual
Conference_Location :
Halifax, NS
Print_ISBN :
978-0-7695-3135-9
DOI :
10.1109/CNSR.2008.79