Browse > Article
http://dx.doi.org/10.6109/jkiice.2016.20.10.1912

The automatic generation of MPTCP session keys using ECDH  

Sun, Seol-hee (Department of Information and Communication Engineering, Hanbat National University)
Kim, Eun-gi (Department of Information and Communication Engineering, Hanbat National University)
Publication Information
Journal of the Korea Institute of Information and Communication Engineering / v.20, no.10, 2016 , pp. 1912-1918 More about this Journal
Abstract
MPTCP(Multipath Transmission Control Protocol) is able to compose many TCP paths when two hosts connect and the data is able to be transported through these paths simultaneously. When a new path is added, the authentication between both hosts is necessary to check the validity of host. So, MPTCP exchanges a key when initiating an connection and makes a token by using this key for authentication. However the original MPTCP is vulnerable to MITM(Man In The Middle) attacks because the key is transported in clear text. Therefore, we applied a ECDH(Elliptic Curve Diffie-Hellman) key exchange algorithm to original MPTCP and replaced the original key to the ECDH public key. And, by generating the secret key after the public key exchanges, only two hosts is able to make the token using the secret key to add new subflow. Also, we designed and implemented a method supporting encryption and decryption of data using a shared secret key to apply confidentiality to original MPTCP.
Keywords
MPTCP; TCP; ECDH; Network security;
Citations & Related Records
Times Cited By KSCI : 3  (Citation Analysis)
연도 인용수 순위
1 BlueKrypt. (2012). NIST Report on Cryptographic Key Length and Cryptoperiod [Internet]. Available: http://www.keylength.com/en/4/.
2 D. K. Too, S. J. Han, "A Study of Key Distribution for Security on VANET," Journal of the Korea Institute of Information and Communication Engineering, vol. 16, no. 10, pp. 2192-2198, October 2012.   DOI
3 OpenSSLWiki. Elliptic curve Diffie Hellman [Internet]. Available: http://wiki.openssl.org/index.php/Ellipttic_Curve_Diffie_Hellman.
4 G. Huston, "IP Multi-Addressing and Multipath TCP," The Internet Protocol Journal, vol. 18, no. 2, pp. 2-12, June 2015.
5 WIKIPEDIA. Multipath TCP [Internet]. Available: http://en.wikipedia.org/wiki/Multipath_TCP.
6 H. E, Go, J. U. Lee, S. H. Back, and J. H. Hwang "Multipath TCP (MPTCP) standardization and technology development trends," Journal of The Korean Institute of Communication Sciences, vol. 31, no. 9, pp. 9-16, September 2014.
7 S. H. Sun, E. G. Kim, "A study on the Key Exchange Using ECDH in MPTCP," in Proceeding of the 4th Annual Conference on Engineering and Information Technology, Kyoto, Japan, pp. 84-89, March 2016.
8 L. T. Tuan, K. S. Kim, J. K. Choe, and S. H. Ro, "A Study on Multi-Path TCP Mobility Management Protocol," Journal of KIIT, vol. 12, no. 6, pp. 109-117, June 2014.
9 A. Ford, C. Raiciu, M. Handley, TCP Extensions for Multipath Operation with Multipath Addresses, RFC 6824, IETF, 2013.
10 M. Bagnulo, Threat Analysis for TCP Extensions for Multipath Operation with Multiple Addresses, RFC 6181, IETF, 2011.
11 K. J. Ha, C. H. Seo, D. Y. Kim, "Design of Validation System for a Crypto-Algorithm Implementation," Journal of the Korea Information and Communication Society, vol. 39, no. 4, pp. 242-250, April 2014.