TUTCRIS - Tampereen teknillinen yliopisto

TUTCRIS

IPsec and IKE as Functions in SDN Controlled Network

Tutkimustuotosvertaisarvioitu

Yksityiskohdat

AlkuperäiskieliEnglanti
OtsikkoNetwork and System Security
Alaotsikko11th International Conference, NSS 2017, Helsinki, Finland, August 21–23, 2017, Proceedings
KustantajaSpringer
Sivut521-530
ISBN (elektroninen)978-3-319-64701-2
ISBN (painettu)978-3-319-64700-5
DOI - pysyväislinkit
TilaJulkaistu - heinäkuuta 2017
OKM-julkaisutyyppiA4 Artikkeli konferenssijulkaisussa
TapahtumaInternational Conference on Network and System Security -
Kesto: 1 tammikuuta 2000 → …

Julkaisusarja

NimiLecture Notes in Computer Science
Vuosikerta10394
ISSN (elektroninen)1611-3349

Conference

ConferenceInternational Conference on Network and System Security
Ajanjakso1/01/00 → …

Tiivistelmä

Currently IPsec performance in high-speed networks is problematic. Traditionally the connections are established between some multifunction network devices which are typically inefficient already in 10 Gbps packet delivery and do not have high-availability nor scalability features. In the Software-Defined Networking, packets only travel through the desired dedicated networking devices. However, few high-speed stand-alone IPsec solutions exists that can be hooked up with the SDN. In this paper we propose a design which will utilize the IPsec in SDN fashion by separating IKE and packet encryption. Experimental results show that high-availability and scalability goals are reached and per-client throughput is increased. The IPsec protocol suite can thus face the on-going need for faster packet processing rate.

Julkaisufoorumi-taso