DocumentCode
2235844
Title
Key recovery in IPSec for improving robustness
Author
Rhee, Yoon-Jung ; Choi, Chang-Won ; Kim, Tae-Woo ; Kim, Tai-Yun
Author_Institution
Dept. of Comput. Sci. & Eng., Korea Univ., Seoul, South Korea
Volume
5
fYear
2001
fDate
2001
Firstpage
72
Abstract
IPSec is a security protocol suite that provides encryption and authentication services for IP messages at the network layer of the Internet. Key recovery has been the subject of a lot of discussion, of much controversy and of extensive research. The widespread opinion of the research community is that large-scale deployment of a key recovery system is essentially impossible. Despite this fact, key recovery might be needed at a corporate level, as a form of key management. The basic observation of the present paper is that cryptographic solutions that have been proposed so far; completely ignore the communication context. Static systems are put forward for key recovery at network layer and solutions that require connections with a server are proposed at application layer. We propose an example to provide key recovery capability by adding key recovery information to an IP datagram. It is possible to take advantage of the communication environment in order to design key recovery protocols that are better suited and more efficient
Keywords
Internet; authorisation; cryptography; message authentication; protocols; IP datagram; IP messages; IPSec; ISAKMP; Internet; application layer; authentication services; encryption; key management; key recovery protocols; network layer; security protocol suite; static systems; Authentication; IP networks; Information security; Large-scale systems; Proposals; Protocols; Public key cryptography; Robustness; Web and internet services; Writing;
fLanguage
English
Publisher
ieee
Conference_Titel
Info-tech and Info-net, 2001. Proceedings. ICII 2001 - Beijing. 2001 International Conferences on
Conference_Location
Beijing
Print_ISBN
0-7803-7010-4
Type
conf
DOI
10.1109/ICII.2001.983497
Filename
983497
Link To Document