Security capability discovery protocol over unsecured IP-based topologies - ENAC - École nationale de l'aviation civile Accéder directement au contenu
Communication Dans Un Congrès Année : 2012

Security capability discovery protocol over unsecured IP-based topologies

Antoine Varet
  • Fonction : Auteur
  • PersonId : 959610
Nicolas Larrieu

Résumé

Network security protocols need high configuration workload. We propose a new protocol to reduce this issue: our "Security Capabilities Over Unsecured Topology" (SCOUT) protocol has been designed to search at each IP-based node for the security supported mechanisms on the remote nodes and then to invoke an adequate security channel establishment mechanism. If the remote node does not support any compatible security features, the SCOUT protocol will try to secure the flow at least up the router in the neighborhood of the node. This protocol avoids the administrator manually managing a tunnel for each couple of nodes. This reduces administrator workload and increases network security deployment scalability. We complete the SCOUT protocol presentation by an evaluation of experimental performance and an analysis of vulnerability.
Fichier principal
Vignette du fichier
364.pdf (308.2 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Loading...

Dates et versions

hal-01022282 , version 1 (09-09-2014)

Identifiants

  • HAL Id : hal-01022282 , version 1

Citer

Antoine Varet, Nicolas Larrieu. Security capability discovery protocol over unsecured IP-based topologies. SAR-SSI 2012, 7ème Conférence sur la Sécurité des Architectures Réseaux et Systèmes d'Information, May 2012, Cabourg, France. pp xxx. ⟨hal-01022282⟩
80 Consultations
107 Téléchargements

Partager

Gmail Facebook X LinkedIn More