Title :
Port randomized VPN by mobile codes
Author :
Shiraishi, Yoshiaki ; Fukuta, Youji ; Morii, Masakatu
Author_Institution :
Dept. of Informatics, Kinki Univ., Osaka, Japan
Abstract :
A key advantage of SSL (secure socket layer) VPN is that no specialized client software is required. When a user requests access to a server, the SSL client module, which is a Java applet code, is downloaded into the host first. However, it is quite likely that not all applications run well, because a client cannot connect with a server through an HTTPS tunnel in some applications. Moreover, there is the possibility that we can not use the VPN connections when the SSL port is under denial of service (DoS) or distributed DoS (DDoS) attack. We propose a port randomized VPN architecture such that any application can use the VPN and the VPN has strength against DoS or DDoS attack. The proposed VPN uses the same Java applet as existing SSL VPNs use, but the function of the applet, which we call mobile code, is dynamically changed by Java remote method invocation (RMI). The VPN client applet can cooperate with a VPN server and a firewall in the server side.
Keywords :
Java; authorisation; client-server systems; telecommunication computing; telecommunication security; transport protocols; virtual private networks; DDoS; HTTPS tunnel; Java applet code; Java remote method invocation; SSL VPN; client software; distributed DoS; distributed denial of service; firewall; mobile codes; secure socket layer; security protocol; Application software; Authentication; Computer crime; Filters; Java; Samarium; Strontium; Transport protocols; Virtual private networks; Web server;
Conference_Titel :
Consumer Communications and Networking Conference, 2004. CCNC 2004. First IEEE
Conference_Location :
Las Vegas, NV, USA
Print_ISBN :
0-7803-8145-9
DOI :
10.1109/CCNC.2004.1286951
