Journal ArticleDOI
Secure and Efficient Tunneling of MACsec for Modern Industrial Use Cases
Reads0
Chats0
TLDR
This work designs and implements two approaches for a secure and efficient Layer 3 tunneling scheme for MACsec, that are equally secure and considerably outperform comparable state-of-the-art technique techniques.Abstract:
Trends like Industry 4.0 will pose new challenges for future industrial networks. Greater interconnectedness, higher data volumes as well as new requirements for speeds as well as security will make new approaches necessary. Performance optimized networking techniques will be demanded to implement new use cases, like network separation and isolation, in a secure fashion. A new and highly efficient protocol, that will be vital for that purpose, is MACsec. It is a Layer 2 encryption protocol that was previously extended specifically for industrial environments. Yet, it lacks the ability to bridge local networks. Therefore, in this work, we propose a secure and efficient Layer 3 tunneling scheme for MACsec. We design and implement two approaches, that are equally secure and considerably outperform comparable state-of-the-art technique techniques.read more
References
More filters
Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3 Networks
T. Sridhar,Lawrence Kreeger,Christopher G. Wright,Dinesh G. Dutt,Mike Bursell,Mallik Mahalingam,Puneet Agarwal,Kenneth Duda +7 more
TL;DR: This document describes Virtual eXtensible Local Area Network (VXLAN), which is used to address the need for overlay networks within virtualized data centers accommodating multiple tenants.
Book ChapterDOI
SipHash : a fast short-input PRF
TL;DR: This work proposes that hash tables switch to SipHash as a hash function, which is simpler than MACs based on universal hashing, and faster on short inputs than state-of-the-art MACs.
Layer Two Tunneling Protocol - Version 3 (L2TPv3)
Jed Lau,Ignacio Goyret +1 more
TL;DR: This document describes "version 3" of the Layer Two Tunneling Protocol (L2TPv3), which defines the base control protocol and encapsulation for tunneling multiple Layer 2 connections between two IP nodes.
Proceedings ArticleDOI
Comparison of Frameworks for High-Performance Packet IO
TL;DR: This paper surveys various frameworks for high-performance packet IO and introduces a model to estimate and assess the performance of these packet processing frameworks, and quantifies the effects of caching and looks at the tradeoff between throughput and latency.
Proceedings ArticleDOI
WireGuard: Next Generation Kernel Network Tunnel.
TL;DR: WireGuard is a secure network tunnel, operating at layer 3, implemented as a kernel virtual network interface for Linux, which aims to replace both IPsec for most use cases, as well as popular user space and/or TLS-based solutions like OpenVPN, while being more secure, more performant, and easier to use.