Materials Research The Transmission Of Information Security In The Implementation Of The Ipsec Protocol

Information security problem in the network has been not only paid attention by individuals and companies of network information society increasingly, but also involved in all aspects. For building reliable and secure information networks, it is of great necessity and urgency to make research on security technology.The availability and inexpensive access of the Internet, has resulted in an increasing demand for Virtual Private Network (VPN) solutions. VPNs provide the means to conduct secure communication of private information on the open and rather insecure Internet. Currently, there are a handful of VPN protocols rising to the surface in the industry - namely L2TP, IPsec, and SOCKS 5.IPSec is actually a suite of protocols.The suite includes the Authentication Header (AH), which addresses authentication for IP traffic, the Encapsulating Security Payload (ESP), which defines encryption for IP data,the Internet Key Exchange(IKJE),which facilitates the transfer of IPSec security associations (SAs). The Authentication Header ensures that the packet has not been altered or tampered with during transmission. ESP is the protocol that handles encryption of IP data at the packet level. It uses symmetric and cryptographic algorithms like Data Encryption Standard (DES), and triples DES to encrypt the payload.Together, the IPSec ESP and AH protocols provide privacy, integrity, and authentication of IP packets.The technology of IPSec VPN is focused in the thesis. We developed VPN Client software to enable completely transparent IPSec protection for traffic to and from a PC while it is running a familiar Microsoft Windows environment. The client implemented as an NDIS intermediate device driver that runs under Windows. This implementation is commonly referred to as a "bump-in-the-stack" approach. It appears as a network driver to the upper operating system, which allows the entire Windows IP stack and all applications to function without any knowledge of the IPSec software. Using standards-based IPSec technology, VPN Client extends the integrity and confidentiality of data traveling outside of enterprise networks by providing encryption, compression, and authentication.