Abstract
A VPN establishes a cryptographically secure network using the existing insecure infrastructure of the Internet. A number of protocols, including IPSec have been designed to establish VPNs. However, keys must be shared between the communicating peers before a VPN can be established. IKE protocol is used for exchanging keys between authenticated peers over the Internet. However, IKE is vulnerable to DoS attacks and has security holes. A number of protocols have been proposed to replace IKE but these protocols also have vulnerabilities of their own. In this paper, we present an analysis of IKE and identify its security holes and design weaknesses. We also propose a more secure and efficient key exchange protocol, Arcanum, and carry out its security analysis and comparison with existing protocols. Arcanum is more secure, robust to DoS attacks and efficient in terms of time and number of messages.
Original language | English |
---|---|
Title of host publication | Proceedings of the International Conference on Information Technology Coding and Computing (ITCC) |
Editors | A Abraham, J Thomas |
Place of Publication | USA |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Pages | 17-21 |
Volume | 1 |
ISBN (Print) | 0769527088 |
DOIs | |
Publication status | Published - Apr 2004 |
Event | Arcanum: A Secure and Efficient Key Exchange Protocol for the Internet - Las Vegas, USA Duration: 1 Jan 2004 → … |
Conference
Conference | Arcanum: A Secure and Efficient Key Exchange Protocol for the Internet |
---|---|
Period | 1/01/04 → … |