A Study On Security Of Soft-Switched Network With IPSec

With the emergence of NGN, as one of the core technology NGN, Soft-Switch technology has been rapid development in recent years. However, with the development of Soft-Switching Network, its security issues are becoming increasingly exposed.IPSec is an important solution to solve security problems of Soft-Switched Networks. But the vulnerabilities of Soft-Switched Network with IPSec do not get adequate attention of researchers. So, based on the study on Soft-Switching and IPSec, a systematic research on the security of Soft-Switched Network with IPSec is done in this paper.For the Soft-Switched Network with IPSec, this paper do a research of the security improvement from the confidentiality, integrity, authentication first;and the DoS Attack and Statistical Detection Attack which have not been solved by IPSec is pointed out later; after that new vulnerabilities brought by IPSec is studied. These new vulnerabilities include enhanced of Dos, weaken of IDS and the defect of IKE. IKE Main Mode vulnerabilities are focused on in this paper, and a new model and an improved way to attack IKE Main is presented.In the foundation of the study on security of Soft-Switched Network with IPSec, a verification system named 3S-System is designed, and part of the results of 3S-System are given. At last, some suggestions to improve the security of Soft-Switched Network with IPSec are also given.