Hindering Eavesdropping via IPv6 Opportunistic Encryption

13 years 10 months ago

Download www.inrialpes.fr

This paper presents an opportunistic encryption scheme strictly layered on top of IPv6. Assuming that a node needs to send data toward another node, our proposal enables the dynamic conﬁguration of an encrypted tunnel between the two nodes’ IPsec gateways. The main contribution of this paper is to propose a solution that is fully distributed and does not rely on any global Trusted Third Party (such as DNSSEC or a PKI). The IPsec gateways are discovered using IPv6 anycast, and they derive authorization from authorization certiﬁcates and Crypto-Based Identiﬁers (CBIDs). The result is a robust and easily deployable opportunistic encryption service for IPv6.

Claude Castelluccia, Gabriel Montenegro, Julien La

Real-time Traffic

ESORICS 2004 | IPsec Gateways | Opportunistic Encryption | Opportunistic Encryption Scheme | Security Privacy |

claim paper

Post Info
More Details (n/a)

Added	01 Jul 2010
Updated	01 Jul 2010
Type	Conference
Year	2004
Where	ESORICS
Authors	Claude Castelluccia, Gabriel Montenegro, Julien Laganier, Christoph Neumann

Comments (0)

Sciweavers

Hindering Eavesdropping via IPv6 Opportunistic Encryption

ESORICS 2004 | IPsec Gateways | Opportunistic Encryption | Opportunistic Encryption Scheme | Security Privacy |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers