Security Investigate

Secrecy and Cooperative Firewall Policies in Virtual Private Network

Download now Free registration required

Executive Summary

Virtual Private Network (VPN) is a globally used technology allows the user to create encrypted tunnel. CDCF (Cross-Domain Cooperative Firewall) is vulnerable to selective policy updating attacks, by which the policy owner can quickly reveal the request of the other party. Furthermore, CDCF is inefficient because it uses commutative encryption functions such as the Pohlig-Hellman Exponentiation Cipher and Secure RPC Authentication (SRA), which are extremely expensive in nature, to address this issue, the authors propose Gwing, a framework that allows a policy owner and a request owner to collaboratively determine whether the request satisfies the policy without the policy owner knowing the request and the request owner knowing the policy.

  • Format: PDF
  • Size: 356.97 KB