In this paper, I present the comprehensive and detailed information about the design and implementation of IP Encryption System. Firstly, I give a brief introduction to IPSec Architecture; then the system function and performance descriptions are described. On the base of that, we bring out our system architecture design and system configuration. The following is the detailed design of all parts of this system, technological puzzle and corresponding solutions. During the realization of it, we focus on the performance, device and communication security, user management's convenience and so on. In the meanwhile, many advanced techniques have been utilized, such as Encryption card, IC card, local process communication, programming in kernel mode, socket programming. At last, I put forward the system performance analysis, examples using IP Encryption System to construct the VPN and improvement and prospect in the future. |