Dynamic network-based secure VPN deployment in GPRS
نویسندگان
چکیده
A dynamic network-based Virtual Private Network (VPN) deployment, which is established between the General Packet Radio Services (GPRS) border gateway and a corporate Intranet gateway, is presented and analyzed. By relying on a sequence of concatenated protection mechanisms (GPRS ciphering and VPN deployment), it is possible to provide secure remote access to mobile users without requiring an extra tunnel overhead on the radio link or the implementation of computationally intense encryption algorithms in the mobile station. The VPN functionality is based on IPsec. For VPN initialization and key agreement procedures an Internet Key Exchange (IKE) protocol proxy scheme is proposed, which enables the mobile user to initiate a VPN, while shifting complex key negotiation to the network infrastructure. The required enhancements for security service provision can be integrated in the existing network infrastructure, and therefore, the proposed security scheme can be used as an add-on feature of the GPRS.
منابع مشابه
On Demand Network-wide VPN Deployment in GPRS
The Mobile Internet requires enhanced security services available to all mobile subscribers in a dynamic fashion. A network-wide Virtual Private Network (VPN) deployment scenario over the General Packet Radio Service (GPRS) is proposed and analyzed from a security viewpoint. The proposed security scheme improves the level of protection that is currently supported in GPRS and facilitates the rea...
متن کاملSecure VPN Deployment in GPRS Mobile
The growth of the Internet and the success of mobile networks suggest that the next trend will be an increasing demand for mobile access to Internet applications. It is therefore increasingly important that mobile radio networks support these applications in an efficient manner. Moreover, in such a hybrid environment, where clients are connecting to ever growing networks in an ad-hoc fashion, t...
متن کاملMeasurement of Application-Perceived Throughput of an E2E VPN Connection Using a GPRS Network
Based on the need for secure and reliable mobile communication, this paper investigates the applicationperceived throughput of an end-to-end VPN connection using IPSec over GPRS. GPRS is of particular interest regarding performance issues due to its wide deployment but limited capacity. To this end, different encryption and authentication algorithms are considered. The throughput is measured on...
متن کاملA survey on automatic configuration of virtual private networks
Virtual private networks (VPN) offer a secure data exchange over public networks. Despite being cheaper than leased lines, growing sizes and dynamic behavior of VPN nodes, e.g., for mobility or reasons of denial-of-service-attacks, make a manual configuration of large, dynamic VPN expensive. Consequently, a number of different VPN auto-configuration approaches have been invented and partially d...
متن کاملAlternative Schemes for Dynamic Secure VPN Deployment in UMTS
Three alternative schemes for secure Virtual Private Network (VPN) deployment over the Universal Mobile Telecommunication System (UMTS) are proposed and analyzed. The proposed schemes enable a mobile node to voluntarily establish an IPsec-based secure channel to a private network. The alternative schemes differ in the location where the IPsec functionality is placed within the UMTS network arch...
متن کامل