Open AccessProposal for a Practical Cipher Communication Protocol That Can Coexist with NAT and Firewalls
Author(s) -
Shinya Masuda,
Hidekazu Suzuki,
Naonobu Okazaki,
Akira Watanabe
Publication year - 2006
Publication title -
lecture notes in computer science
Language(s) - English
Resource type - Book series
SCImago Journal Rank - 0.249
H-Index - 400
eISSN - 1611-3349
pISSN - 0302-9743
ISBN - 3-540-48563-5
DOI - 10.1007/11919568_71
Subject(s) - computer science , ipsec , computer network , network packet , cipher , encryption , computer security , private network , network address , network security , nat , nat traversal , network address translation , internet protocol , operating system , the internet
Threats to network security have become a serious problem, and encryption technologies for communications are an important issue these days Although the security of IPsec ESP (, that is a typical existing cipher communication technology) is strong, it has such problems that it can not be used in the environment where it coexists with NAT and firewalls, and that there also exists some degradation of throughput For such reasons, ESP is used only for some limited applications such as VPN (Virtual Private Network) In this paper, we propose a new cipher communication protocol, called PCCOM (Practical Cipher COMmunication), that can verify the identity of the corresponding counterpart and assure the integrity of packets in the environment where it coexists with NAT and firewalls, without changing the format of the original packets To confirm the effectiveness of PCCOM, we installed a trial system in FreeBSD, and confirmed the coexistibility with NAT and firewalls We also measured its throughput, and good performance was confirmed, which is attributable to “no change” of the packet format.
Accelerating Research
Robert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom
Address
John Eccles HouseRobert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom