Design of a VPN Software Solution Integrating TCP and UDP Services

TitleDesign of a VPN Software Solution Integrating TCP and UDP Services
Publication TypeConference Paper
Year of Publication2002
AuthorsJ. Lopez, J. A. Montenegro, R. Roman, and J. Davila
Conference NameInternational Conference on Infrastructure Security (InfraSec’02)
Series TitleLNCS
Date PublishedOctober
Conference LocationBristol, U.K.

The main aims of Virtual Private Network (VPN) are to isolate a distributed network from outsiders, as well as to protect the confidentiality and integrity of sensitive information traversing a non-trusted network such as the Internet. However, some problems arise when security is considered as the unique problem because VPN users suffer from restrictions in their access to the network. They are not free to use traditional Internet services such as electronic mail exchange with non-VPN users, and to access Web and FTP servers external to the organization. This paper presents a new solution that allows the open use of traditional network services running over TCP and UDP layers, while maintaining strong security features. The new scheme works at the TCP/IP transport layer and does not require the addition of new hardware because it is a totally software solution. As a consequence, the application is totally portable. Moreover, and because of its implementation at the transport layer, there is no need to modify any traditional communication applications previously installed in the network system.

Citation KeyJavierLopez2002c
Paper File: