Title :
Design and Implementation of the communication protocol for efficient CBC mode processing in IPSec
Author :
Park, Sang-Hyun ; You, Yong-Duck ; Choi, Hoon
Author_Institution :
Nat. Security Res. Inst., Daejeon
Abstract :
The IV (initial vector) used in CBC mode must be varied per message, must not be used arbitrarily by attackers, and must be created randomly. To meet these requirements, IV encrypted before a message is sent. Note, however, that this method requires additional steps for IV encryption before sending a message and decryption by the receiver. This paper proposed the method that does not require IV encryption/decryption and developed the lightweight protocol and security API specification based on the proposed method. As a result of the experiment, system performance improvement can be achieved. In an environment with small-sized packet data, in particular, greater system performance improvement can be achieved. Moreover, since small-sized random numbers are sent without the entire IV, sending overhead can be reduced considerably compared to the existing methods
Keywords :
IP networks; application program interfaces; cryptographic protocols; telecommunication security; CBC mode processing; IPSec; IV encryption; Internet protocol security; application program interfaces; cipher block chaining; communication protocol; decryption; initial vector; security API specification; Authentication; Computer architecture; Cryptography; Design engineering; Electrostatic precipitators; National security; Process design; Protection; Protocols; System performance;
Conference_Titel :
TENCON 2006. 2006 IEEE Region 10 Conference
Conference_Location :
Hong Kong
Print_ISBN :
1-4244-0548-3
Electronic_ISBN :
1-4244-0549-1
DOI :
10.1109/TENCON.2006.343817
