Title :
Simulation of the encryption of NetFlow packet capturing system using IPSec
Author :
Ghazali, A.J. ; Al-Nuaimy, Waleed ; Nandi, A.K.
Author_Institution :
Dept. of Electr. Eng. & Electron., Univ. of Liverpool, Liverpool, UK
Abstract :
This paper investigates the effectiveness of IPSec as encryption tools in securing NetFlow packets through an encapsulated channel in a simulated network traffic model. NetFlow´s flow recording is one of the most serious threats that has broad significance in NetFlow´s flow recording technology. By securing the NetFlow, the administrator could enforce a privacy policy on the data that is recorded. We employ IPSec as encryption tool that encapsulates the flow and turns it into a secured channel. Furthermore, we demonstrate that the CPU and memory utilization during the process will not have a big impact on machine´s performance. Simulation results show that NetFlow´s flow data are successfully recorded and encrypted by IPSec. It is found that this process has not consumed more memory which only differs by 0.2% from normal operation and that the CPU performance is only increased by 6.5%.
Keywords :
Internet; computer network security; cryptographic protocols; digital simulation; telecommunication channels; telecommunication traffic; IPSec; Internet protocol security; NetFlow flow recording; NetFlow packet capturing system; broad significance; channel security; encapsulated channel; encryption simulation; encryption tools; machine performance; memory utilization; privacy policy; simulated network traffic model; IPSec; Netflow; Virtual Local Area Network; Wireshark; encryption; flow; network monitoring system;
Conference_Titel :
Computers and Devices for Communication (CODEC), 2012 5th International Conference on
Conference_Location :
Kolkata
Print_ISBN :
978-1-4673-2619-3
DOI :
10.1109/CODEC.2012.6509361
