Heydari Fami Tafreshi, Vahid, Ghazisaeedi, Ebrahim, Cruickshank, Haitham and Sun, Zhili (2014) Integrating IPsec within OpenFlow Architecture for Secure Group Communication. ZTE COMMUNICATIONS JOURNAL, 12 (2). pp. 41-49. ISSN 1673-5188
int-zte-14 (1).pdf - Publisher's typeset copy
Available under License Type All Rights Reserved.
Download (736kB) | Preview
Abstract or description
Network security protocols such as IPsec have been used for many years to ensure robust end⁃to⁃end communication and are important in the context of SDN. Despite the widespread installation of IPsec to date, per⁃packet protection offered by the protocol is not very compatible with OpenFlow and flow⁃like behavior. OpenFlow architecture cannot aggregate IPsec⁃ESP flows in transport mode or tunnel mode because layer⁃3 information is encrypted and therefore unreadable. In this paper, we propose using the Security Parameter Index (SPI) of IPsec within the OpenFlow architecture to identify and direct IPsec flows. This enables IPsec to conform to the packet⁃based behavior of OpenFlow architecture. In addition, by distinguishing between IPsec flows, the architecture is particularly suited to secure group communication.
Item Type: | Article |
---|---|
Faculty: | Previous Faculty of Computing, Engineering and Sciences > Computing |
Depositing User: | Vahid HEYDARI FAMI TAFRESHI |
Date Deposited: | 03 Nov 2016 15:11 |
Last Modified: | 24 Feb 2023 13:45 |
Related URLs: | |
URI: | https://eprints.staffs.ac.uk/id/eprint/2852 |