Performance analysis of AES-finalists along with SHS in IPSEC VPN over 1Gbps link | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >2015 12th International Bhurb...

Performance analysis of AES-finalists along with SHS in IPSEC VPN over 1Gbps link

PDF
Awais Tanveer; Amir Ali; Muhammad Arsalan Paracha; Fawad Riasat Raja
All Authors

Abstract:

IPSEC is suit of protocols designed to provide secure communication over Network Layer (Layer-3) of TCP/IP model. Participating IPSEC gateways may have different algorith...Show More

Metadata

Abstract:

IPSEC is suit of protocols designed to provide secure communication over Network Layer (Layer-3) of TCP/IP model. Participating IPSEC gateways may have different algorithms installed in them but RFC-4835 mentions mandatory algorithms that a gateway must have so that participating gateways always have at least one algorithmic combination to agree upon. Off the shelve IPSEC implementations only implement these mandatory algorithms. In this paper, the enhancements involve the selection of hashing and encryption algorithms that yield better performance for the given system. All AES finalists and SHS algorithms have been embedded after some modifications in 64 bit RHEL 6.2 Linux kernel (2.6.32) and Openswan 2.6.38 (A user space agent which helps gateways to negotiate security associations between them) and performance analysis of these algorithms having throughput as the main parameter over 1 Gbps link in an IPSEC VPN has been done. For this purpose, all the combinations of block ciphers with different key lengths along with hashing algorithms are tested and analyzed under same operating conditions. Comparative results are shown with respect to every combination of AES finalists with every hashing algorithm of SHS and MD5. Furthermore, All the AES finalists have also been tested without hashing algorithms.
Published in: 2015 12th International Bhurban Conference on Applied Sciences and Technology (IBCAST)
Date of Conference: 13-17 January 2015
Date Added to IEEE Xplore: 12 March 2015
Electronic ISBN:978-1-4799-6369-0

ISSN Information:

DOI: 10.1109/IBCAST.2015.7058524
Conference Location: Islamabad, Pakistan
Contents

I. Introduction

IPSEC is a set of protocols which provides secure communication over Network Layer (Layer-3) of TCP/IP model. Layer 3 is used for routing protocols that is why machines that implement and configure IPSEC are also called IPSEC gateways. IPSEC is extensively used in small and large enterprises to provide confidential, authentic and integral communication. IPSEC includes following protocols: (a) Encapsulation Security Payloads (ESP), (b) Authentication Headers (AH), (c) Security Associations (SA), (d) Internet Security Association, (e) Key Management Protocol (ISAKMP). Points of interest in this research are ESP and AH. Traditionally, ESP is used to provide encryption functionality via block ciphers and AH is used to provide integrity via various hashing algorithms. To have communication between two IPSEC gateways, both gateways must agree on same set of ESP and AH algorithms. This agreement is called Security Association and ISAKMP is used to establish same SA on both gateways.

Contact IEEE to Subscribe
More Like This
Design and Implementation of Communication IP Core Based on CAN Bus Encryption and Authentication

2024 6th International Conference on Electronic Engineering and Informatics (EEI)

Published: 2024

Authentication Protocol Design and Low-Cost Key Encryption Function Implementation for Wireless Sensor Networks

IEEE Systems Journal

Published: 2017

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.