A generic characterization of the overheads imposed by IPsec and associated cryptographic algorithms

“…The mathematical analysis performed in [33] and [34] proved that the encryption/decryption delay of AES depends on the message size (S d ) and the number of million instructions per second (MIPS) of the processor (C p ). The encryption delay of AES was derived in [34] and found to be equal to: Int.…”

“…On the other hand, T AES−Enc is the number of processing cycles required to encrypt one block of data, which is equal to 6168 processing cycles for a 128 bit key (which is the size of the AES session key that we will use in the simulations). In a similar way, the authors in [34] calculate the number of processing cycles needed to decrypt one block of data (T AES−Dec ) and use it to calculate the total decryption delay of a packet, which Int. J.…”

HiMAC: Hierarchical Message Authentication Code for Secure Data Dissemination in Mobile Ad Hoc Networks

“…The mathematical analysis performed in [33] and [34] proved that the encryption/decryption delay of AES depends on the message size (S d ) and the number of million instructions per second (MIPS) of the processor (C p ). The encryption delay of AES was derived in [34] and found to be equal to: Int.…”

“…On the other hand, T AES−Enc is the number of processing cycles required to encrypt one block of data, which is equal to 6168 processing cycles for a 128 bit key (which is the size of the AES session key that we will use in the simulations). In a similar way, the authors in [34] calculate the number of processing cycles needed to decrypt one block of data (T AES−Dec ) and use it to calculate the total decryption delay of a packet, which Int. J.…”

HiMAC: Hierarchical Message Authentication Code for Secure Data Dissemination in Mobile Ad Hoc Networks

“…One of them (Cremers, 2011) identifies the following vulnerabilities: Reflection attack on IKEv1 Main Mode with digital signatures or pre-shared keys, Reflection attack on IKEv1 Quick Mode, Reflection attack on IKEv1 Main Mode with public key encryption, Authentication failure on IKEv1 Aggressive Mode with digital signatures, Authentication failure on IKEv1 Main Mode with digital signatures that does not require selfcommunication, Reflection attack on IKEv2 phase 2 exchange. Another important aspect of the IPsec protocol is the computational overhead, described in detail in (Xenakis, 2006). The factors taken into account are the encryption type and the authentication mechanism, and the resultants reflect in the system throughput, total delay and rate increase of the protected data.…”

Potential Applications of IPsec in Next Generation Networks

“…The protocol increases the security level by applying different cryptographic algorithms to send and receive encrypted data over secure channels. Originally IPSec was designed for wired networks and the wireless networks' limitations, such as processing power of mobile devices and the limited resources of wireless channels were not considered initially [8].…”

Performance Evaluation of Secure Video Transmission over WIMAX