IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap

Krishnan, Suresh; Frankel, Sheila E.

doi:10.17487/rfc6071

Cited by 110 publications

(78 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The dual-stack configuration enables a gradual deployment for HIP, while providing backward compatibility with IPv6 hosts. The NCF provides end-to-end security using the ESP [26] protocol 6 . In the HIP case, a secure channel is established using the shared secret derived from the native Base Exchange (BEX) 7 mechanism, while in the MIPv6 case, the IPsec Internet Key Exchange (IKEv2) protocol is used.…”

Section: Methodsmentioning

confidence: 99%

See 1 more Smart Citation

Unified Heterogeneous Networking Design

Singh¹,

Ormazabal²,

Schulzrinne³

et al. 2013

Proceedings of Principles, Systems and Applications on IP Telecommunications

View full text Add to dashboard Cite

The Internet was designed under the assumption that end-hosts are stationary and have one interface. Current mobile devices have multiple network interfaces, such as Wi-Fi, LTE, WiMAX, and possibly Ethernet. Such diverse network connectivity can be used to increase both reliability and performance by running applications over multiple links sequentially, for a seamless user experience, or in parallel, for bandwidth and performance enhancements. Users are also consuming Internet services from multiple locations and devices, such as smartphones, tablets, laptops, and IP-enabled TVs. The existing networking stack, however, offers almost no support for intelligently exploiting such network, location and device diversity.Since, most Internet devices today are mobile, we propose a unified networking architecture that makes optimal use of a heterogeneous dynamic environment, both in terms of networks and user devices. The system core functionalities include mobility, multi-homing, multipath, and disruption tolerance. The system enables mobile nodes to make decisions about how and when to use each or a combination of networks, in a secure manner. With this new architecture, we envision a shift from current applications supporting a single network, location, and device at a time, to applications that can support multiple networks, multiple locations, and multiple devices.

show abstract

Section: Methodsmentioning

confidence: 99%

“…Furthermore, the public/private key pair used in the asymmetric step, can be also used to generate shared secrets, for securing end-to-end communication channels using any of the well-known symmetric key-based security protocols (e.g., Encapsulating Security Payload (ESP) [26], TLS, or application specific security).…”

Section: Infrastructure Accessmentioning

confidence: 99%

Unified Heterogeneous Networking Design

Singh¹,

Ormazabal²,

Schulzrinne³

et al. 2013

Proceedings of Principles, Systems and Applications on IP Telecommunications

View full text Add to dashboard Cite

show abstract

“…Transport Security NSH is always encapsulated by an outer transport encapsulation as detailed in Section 4 of this specification, and as depicted in Figure 1. If an operator deems cryptographic integrity protection necessary due to their risk analysis, then an outer transport encapsulation that provides such protection [RFC6071], such as IPsec, MUST be used.…”

Section: Sff/sf Nsh Verificationmentioning

confidence: 99%

Network Service Header (NSH)

Quinn¹,

Pignataro²,

Elzur³

2018

View full text Add to dashboard Cite

“…The Point to Point Tunneling Protocol (PPTP) creates a virtual private network by using the Point to Point Protocol (PPP) and the Internet Protocol (IP). The Internet Protocol Security (IPsec) [6] or the Multi-Protocol Label Switching (MPLS) [7] are used at the level 3. The Secure Sockets Layer (SSL) [8] is used at level 4 and ensures the security and the confidentiality of the communication through the network.…”

Section: Basic Concepts Of the Distance Educationmentioning

confidence: 99%