Title :
A multilayer IP security protocol for TCP performance enhancement in wireless networks
Author :
Zhang, Yongguang
Author_Institution :
HRL Labs., Malibu, CA, USA
fDate :
5/1/2004 12:00:00 AM
Abstract :
Transmission control protocol (TCP) performance enhancement proxy (PEP) mechanisms have been proposed, and in some cases widely deployed, to improve TCP performance in all-Internet protocol (IP) wireless networks. However, this technique is conflicted with IP-security (IPsec)-a standard IP security protocol that will make inroad into wireless networks. This paper analyzes the fundamental problem behind this conflict and develops a solution called multilayer IP-security (ML-IPsec). The basic principle is to use a multilayer protection model and a fine grain access control to make IP security protocols compatible with TCP PEP. It allows wireless network operators or service providers to grant base stations or wireless routers limited and controllable access to the TCP headers for performance enhancement purposes. Through careful design, implementation, and evaluation, we show that we can easily add ML-IPsec to existing IPsec software and the overhead is low. We conclude that ML-IPsec can help wireless networks provide both security and performance.
Keywords :
IP networks; radio networks; telecommunication security; transport protocols; IP-security protocol; TCP performance; all-Internet protocol wireless network; base station; grain access control; multilayer IP security protocol; multilayer protection model; network security; network service provider; performance enhancement proxy mechanism; transmission control protocol; wireless network; wireless network operator; wireless router; Access protocols; Base stations; Delay; Intelligent networks; Nonhomogeneous media; Satellites; TCPIP; Wireless application protocol; Wireless networks; Wireless personal area networks;
Journal_Title :
Selected Areas in Communications, IEEE Journal on
DOI :
10.1109/JSAC.2004.825993
