Open Access
Security Architecture for the Internet Protocol
R. Atkinson
- Vol. 1825, pp 1-101
Reads0
Chats0
TLDR
This document describes an updated version of the "Security Architecture for IP", which is designed to provide security services for traffic at the IP layer, and obsoletes RFC 2401 (November 1998).Abstract:
This document describes an updated version of the "Security
Architecture for IP", which is designed to provide security services
for traffic at the IP layer. This document obsoletes RFC 2401
(November 1998). [STANDARDS-TRACK]read more
Citations
More filters
Patent
Method, apparatus, and system for supporting flexible lookup keys in software-defined networks
Sridhar Pitchai,Mark Hlady +1 more
TL;DR: In this article, the authors describe a method for supporting flexible lookup keys in a software-defined network, which includes parsing the packet to identify a superkey comprising a plurality of header field values of the packet; identifying a super key mask value and offset value for a first lookup table of a set of one or more lookup tables; generating a table key for the first lookup tables based upon the superkey mask value, the super key offset value, and the super-key; and performing a lookup in the first look table using the table key The lookup identifies an entry of the
IEEE 802.11 Wireless LAN Security Overview
TL;DR: All security solutions starting from WEP to IEEE802.11i are reviewed and the strength and weakness of these solutions are discussed.
Book ChapterDOI
Tighter Proofs for the SIGMA and TLS 1.3 Key Exchange Protocols
Hannah Davis,Felix Günther +1 more
TL;DR: New, fully-quantitative and concrete bounds that justify the SIGMA and TLS 1.3 key exchange protocols’ security levels are given, and it is proved that the strong Diffie–Hellman problem is as hard as solving discrete logarithms in the generic group model.
Patent
Network Availability Enhancement Technique for Packet Transport Networks
TL;DR: In this article, a load distribution method to distribute each instance of traffic to an individual transport path was proposed, thereby avoiding reordering at the destination, enabling all the transport paths to carry the traffic; allowing the network to provision a preferred traffic distribution through a policy setting; and redistributing the traffic when a condition on one of the transport path changes.
Proceedings ArticleDOI
Formal prototyping in early stages of protocol design
TL;DR: This work investigates how formal simulation based on Maude executable specifications overcomes many of the hurdles of formal methods in the early stages of the design of a new security protocol, known as Layer 3 Accounting (L3A), aimed at protecting known vulnerabilities in the wireless accounting infrastructure.
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Key words for use in RFCs to Indicate Requirement Levels
TL;DR: This document defines these words as they should be interpreted in IETF documents as well as providing guidelines for authors to incorporate this phrase near the beginning of their document.
Journal ArticleDOI
Using encryption for authentication in large networks of computers
TL;DR: Use of encryption to achieve authenticated communication in computer networks is discussed and example protocols are presented for the establishment of authenticated connections, for the management of authenticated mail, and for signature verification and document integrity guarantee.
Internet Protocol, Version 6 (IPv6) Specification
S. Deering,R. Hinden +1 more
TL;DR: In this paper, the authors specify version 6 of the Internet Protocol (IPv6), also referred to as IP Next Generation or IPng, and propose a new protocol called IPng.
Internet Protocol
TL;DR: Along with TCP, IP represents the heart of the Internet protocols and has two primary responsibilities: providing connectionless, best-effort delivery of datagrams through an internetwork; and providing fragmentation and reassembly of data links to support data links with different maximum transmission unit (MTU) sizes.