IQSM: An end-to-end IntServ QoS signaling mechanism for crypto-partitioned networks

Author

Kaddoura, Maher ; Ramanujan, Ranga

Author_Institution

Archit. Technol. Corp., Eden Prairie, MN, USA

fYear

2009

fDate

18-21 Oct. 2009

Firstpage

1

Lastpage

5

Abstract

In crypto-partitioned networks classified clear text enclaves (i.e., red enclaves) are interconnected over an enciphered unclassified transit network (i.e., black network) via IPSEC tunnels. Thus, packets are encrypted before they are allowed to cross from red networks to a shared black network. Currently, there is no solution that can provide efficient end-to-end IntServ QoS signaling across crypto-partitioned networks because routers within the black networks will not be able to identify and process the encrypted signaling messages. In this paper, we describe a new end-to-end IntServ QoS signaling mechanism that enables QoS provisioning for flows traversing crypto-partitioned networks. The new mechanism is scalable, self-configuring, provides accurate QoS provisioning and preserves IntServ signaling semantics.

Keywords

IntServ networks; cryptography; quality of service; telecommunication network routing; telecommunication security; telecommunication signalling; IPSEC tunnel; IntServ signaling semantics; QoS provisioning; black network; crypto-partitioned network; enciphered unclassified transit network; encrypted signaling message; end-to-end IntServ QoS signaling; red network; router; text enclave; Cryptographic protocols; Cryptography; Diffserv networks; Home appliances; IP networks; Information security; Quality of service; Signal processing; Telecommunication traffic; Transport protocols;

fLanguage

English

Publisher

ieee

Conference_Titel

Military Communications Conference, 2009. MILCOM 2009. IEEE

Conference_Location

Boston, MA

Print_ISBN

978-1-4244-5238-5

Electronic_ISBN

978-1-4244-5239-2

Type

conf

DOI

10.1109/MILCOM.2009.5380091

Filename

5380091