期刊文献+

对FreeS/WAN实现机制的几点改进

Some improvements towards the implementation mechanism of FreeS/WAN
下载PDF
导出
摘要 首先指出了现有IPsec的不足,分析了IPsec开源项目FreeS/WAN的实现机制。在此基础上,本文针对FreeS/WAN提出了几点改进,设计并实现了一个具有应用感知能力的IPsec原型系统,试图提升IPsec端到端的安全性并合理有效地利用已有安全连接。最后,实验结果表明,上述改进在提升端到端安全性的同时性能下降并不明显,因而具有较高的可行性。 This paper first presents the disadvantages of current IPsec standards, then analyzes the implementation mechanism of open source project FreeS/WAN. Based on such analysis, this paper proposes some improvements towards FreeS/WAN, designs and implements an application- aware IPsec prototype, aiming at promoting end - to- end secrecy of IPsec and making proper use of the existing security connections. At last, the results of experiments indicate that such improvements are of high feasibility to promote end - to - end secrecy at the cost of minor decrease of performance.
作者 赵璧
出处 《西安邮电学院学报》 2009年第1期137-141,共5页 Journal of Xi'an Institute of Posts and Telecommunications
关键词 IPSEC FREES/WAN 套接字 安全连接 IPsec FreeS/WAN socket security connection
  • 相关文献

参考文献9

  • 1IETF IP Security Protoeol(ipsec) working group[J/ OL]. http://www. ietf. org/htm. charters/OLD/ipsec - charter. html.
  • 2S. Kent, R. Atkinson. "Security Architecture for the Intemet Protocol"[J]. RFC2401, Nov. 1998.
  • 3Liu Lian, Wenmei Gao, "Building IPsec VPN in IPv6 on Openswan"[C]. IFIP International Conference on Network and Parallel Computing-Workshops, IEEE Computer Society, 2007.
  • 4Michael C. Richardson, Bill Sommerfeld, "Requirements for an IPsec API" [J ]. Internet Draft, IETF, Apr. 2006.
  • 5Michael C. Richardson, Nicolas Williams and Sasu Tarkoma, "IPsec Application Programming Interfaces" [J]. Internet Draft, IETF, Aug. 2008.
  • 6S. Kent. "IP Authentication Header" [C]. RFC 4302, Dec. 2005.
  • 7S. Kent. "IP Encapsulating Security Payload"[C]. RFC 4303, Dec. 2005.
  • 8C. Kaufman, Ed. "Intemet Key Exchange (IKEv2) Protocol"[C]. RFC 4306, Dec. 2005.
  • 9FreeS/WAN[DB/OL]. http://www. freeswan.org

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部