Open Access
Security Architecture for the Internet Protocol
R. Atkinson
- Vol. 1825, pp 1-101
TLDR
This document describes an updated version of the "Security Architecture for IP", which is designed to provide security services for traffic at the IP layer, and obsoletes RFC 2401 (November 1998).Abstract:
This document describes an updated version of the "Security
Architecture for IP", which is designed to provide security services
for traffic at the IP layer. This document obsoletes RFC 2401
(November 1998). [STANDARDS-TRACK]read more
Citations
More filters
Book ChapterDOI
IPSec/VPN Security Policy: Correctness, Conflict Detection, and Resolution
TL;DR: A high-level security requirement is defined, which not only is an essential component to automate the policy specification process of transforming from security requirements to specific IPSec policies but also can be used as criteria to detect conflicts amongIPSec policies, i.e. policies are correct only if they satisfy all requirements.
Proceedings ArticleDOI
Origin authentication in interdomain routing
TL;DR: This paper formalizes the semantics of address delegation and use on the Internet, and develops and characterize broad classes of origin authentication proof systems, and shows the enhanced proof systems can reduce significantly reduce resource costs associated with origin authentication.
Proceedings ArticleDOI
Linking remote attestation to secure tunnel endpoints
TL;DR: This work examines here how to link specific properties of a remote system "gained through TPM-based attestation" to secure tunnel endpoints to counter attacks where a compromised authenticated SSL endpoint relays the TPM based attestation to another system.
Proceedings ArticleDOI
Dynamic Internet overlay deployment and management using the X-Bone
TL;DR: The X-Bone dynamically deploys and manages Internet overlays to reduce their configuration effort and increase network component sharing, and uses multicast to simplify resource discovery, and provides secure deployment as well as secure overlays.
Patent
Key management methods for wireless LANs
TL;DR: In this paper, the IKE protocol with private keys and certificates is used to generate WLAN link level keys with the access point and provide mutual authentication in wireless local area network (WLAN).
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Key words for use in RFCs to Indicate Requirement Levels
TL;DR: This document defines these words as they should be interpreted in IETF documents as well as providing guidelines for authors to incorporate this phrase near the beginning of their document.
Journal ArticleDOI
Using encryption for authentication in large networks of computers
TL;DR: Use of encryption to achieve authenticated communication in computer networks is discussed and example protocols are presented for the establishment of authenticated connections, for the management of authenticated mail, and for signature verification and document integrity guarantee.
Internet Protocol, Version 6 (IPv6) Specification
S. Deering,R. Hinden +1 more
TL;DR: In this paper, the authors specify version 6 of the Internet Protocol (IPv6), also referred to as IP Next Generation or IPng, and propose a new protocol called IPng.
Internet Protocol
TL;DR: Along with TCP, IP represents the heart of the Internet protocols and has two primary responsibilities: providing connectionless, best-effort delivery of datagrams through an internetwork; and providing fragmentation and reassembly of data links to support data links with different maximum transmission unit (MTU) sizes.