Browse > Article
http://dx.doi.org/10.13089/JKIISC.2013.23.6.989

Efficient Implementation of Crypto Processing Based on Pre_Buffered Key Stream Method  

Kang, Cheol-Oh (The Attatched Institute of ETRI)
Kim, Eun-Chan (The Attatched Institute of ETRI)
Park, Jea-Min (The Attatched Institute of ETRI)
Ryou, Jea-Cheol (Choongnam University)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.23, no.6, 2013 , pp. 989-1000 More about this Journal
Abstract
Mobile devices use VPN solution to transfer information securely through open network in mobile office environment. In this paper, we propose Pre_Buffered mechanism that improves the throughput of IPSec VPN using low performance H/W crypto Token. Pre_Buffered method precompute key stream, store them in Buffer and use them in IPSec engine for IP packet processing. Moreover, Design, analysis, and experimental results prove the efficiency and feasibility of our proposed method.
Keywords
H/W Token; IPSec; Pre_Buffer;
Citations & Related Records
연도 인용수 순위
  • Reference
1 S. Kent and K. Seo, "Security Architecture for the Internet Protocol," RFC 4301, Dec. 2005.
2 T. Dierks and E. Rescorla, "The Transport Layer Security (TLS) Protocol Version 1.2," RFC 5246, Aug. 2008.
3 D. Naccache and D. M'Raihi, "Cryptographic smart cards," IEEE Micro, vol.16, Issue 3, pp. 16-24, June 1996.   DOI   ScienceOn
4 S. Kent, "IP Authentication Header (AH)," RFC 4302, Dec. 2005.
5 S. Kent, "IP Encapsulating Security Payload (ESP)," RFC 4303, Dec. 2005.
6 C. Kaufman and Ed., "The Internet Key Exchange (IKEv2) Protocol," RFC 4306, Dec. 2005.
7 NIST. "Advanced Encryption Standard (AES)," FIPS PUB 197, Nov. 2001.
8 Morris Dworkin, "Recommendation for Block Cipher Modes of Operation : Methods and Techniques," SP 800-38A, Dec. 2001.
9 R. Housley, "Using AES Counter Mode With IPSec ESP," RFC 3686, Jan. 2004.
10 P. Urien, H. Saleh and A. Tizraoui, "SSL in smart card," In Proc. of Networking and Computer Science PHD days ("Journees Doctorales Informatique et Reseaux"), JDIR 2000, Nov. 2000.
11 M. Badra and P. Urien, "Toward SSL integration in SIM SmartCards," In Proc. of Wireless Communications and Networking Conference, pp. 889-893, March 2004.
12 P. Urien, M. Badra and M. Dandjinou, "EAP-TLS smartcards, from dream to reality," In Proc. of Applications and Services in Wireless Networks, pp. 39-45, Aug. 2004,
13 C.H. Yang, L.J. Lin and K. Sakurai, "An Integration of PKI and IC cards for IPSec," In Proc. of Sympoisum on Cryptography and Information Security, Jan. 2004.
14 P. Urien and S. Elrharbi, "Tandem smart cards: enforcing trust for TLS-based network services," In Proc. of Applications and Services in Wireless Networks, pp. 96-104. Oct. 2008.
15 CISCO Systems. "Voice Over IP - Per Call Bandwidth Consumption," Tech Notes, Document ID : 7934, Feb. 2006.