| In recent years enterprises has placed great importance on information security, andthe VPN now play an increasing role in this field.With the help of VPN, The enterprisescan construct the private network throught the internet and share the network resourceswhile guaranteeing the confidentiality,integrality of data. However, Because of the pointto point tunneling technology, the traditional IPsec VPN has many disadvantages, such asbeing hard to deploy and extend. This means the enterprises is very difficult to changethe deployment. Therefore, The traditional IPsec VPN can hardly meet the bigenterprises’demands.In this paper, a new type of VPN(Group Encrypted Transport Virtual PriavateNetwork, GET VPN) is carried out on the limitation above mentioned. GET VPN consistof two parts: The Key server and the Group member. The group member registers withthe key server to get the IPsec GSA to communicate with other group member in thesame group. The communication between group member and key server are managed bythe GDOI protocal(RFC6407). GET VPN, in contrast, allows for more flexiblenetworking, more effective security communications. With a centralized key server, GETVPN greatly simplify the configuration on the group member.The GET VPN system is based on C/S structure, we choose the C language as theprogramming language and the VC6.0as the programming tool. The project have beenusing agile software development, according to the software engineering method, first ofall, a requirement analysis is needed for the system, and then we designed thearchitecture of the system. Based on the requirement analysis, the system has beendivided into two modules, the group meber module and the key server module, and giventhe detailed design implementation. At last, the test method of this system has beengiven in this paper. |
PDF Full Text Request