| Summary: | 碩士 === 國防大學 === 資訊管理學系 === 103 === IPSec (IP Security Protocol) is the network security protocol and it operates in the layer 3 of TCP/IP protocol. This protocol assures confidentiality, integrity and authentication of transmitted data over the Internet. IETF proposed the IPSec standards since 1995. These standards include RFC1825, RFC1826 and RFC 1827that define packet format transformations in the IPSec. Recently, several new revised standards, RFC2401, RFC2402, and RFC2406, were proposed to enhance automatic session key negotiation / exchange mechanism, data confidentiality, public key management and data integrity in the IPSec protocol.
Nowadays, most of software-based IPSec schemes do not regulate an independent password module to assure security of a session key deposit and a follow-up encryption / decryption process. For strengthening the security in the IPSec, this study uses a DSP MicroSD to perform session key exchange and data encryption / decryption process independently. With a pair of MicroSDs kept in two principals of IPSec, the proposed IPSec scheme would enhance confidentiality, integrity and authentication of transmitted data over the Internet. In this study, we implement a prototype program of the proposed IPSec scheme and execute several scenarios. The execution results show that the proposed IPSec scheme with a MicroSD is feasible.
|
|---|
