Title :
Kernel migration of transport layer security
Author :
Kim, Geon-Woo ; Kim, Jeong-Nyeo
Author_Institution :
Electron. & Telecommun. Res. Inst.
Abstract :
A virtual private network is a way to simulate a private network over a public network, such as the Internet. TLS VPN provides privacy and data integrity between two communicating applications. But, for using the existing TLS, we must modify each application program or use additional techniques, since the openSSL library is running on the top of socket layer, and can´t minimize the degradation of performance. So, in this paper, we propose a new TLS security architecture in order to provide each application program with transparency and guarantee performance enhancement by making TLS VPN operate on the top of transport layer. Additionally, we propose a real-time communication mechanism between a record protocol running at kernel level and a handshake protocol, which negotiates new key information at application level
Keywords :
Internet; telecommunication security; transport protocols; virtual private networks; Internet; handshake protocol; kernel migration; real-time communication mechanism; record protocol; transport layer security; virtual private network; Data privacy; Data security; Degradation; IP networks; Information security; Kernel; Libraries; Protocols; Sockets; Virtual private networks;
Conference_Titel :
Advanced Communication Technology, 2005, ICACT 2005. The 7th International Conference on
Conference_Location :
Phoenix Park
DOI :
10.1109/ICACT.2005.246008
