Chapter

Infrastructure Security

Volume 2437 of the series Lecture Notes in Computer Science pp 325-337

Date:

Design of a VPN Software Solution Integrating TCP and UDP Services

  • Javier LopezAffiliated withComputer Science Department, Universidad de Malaga
  • , Jose A. MontenegroAffiliated withComputer Science Department, Universidad de Malaga
  • , Rodrigo RomanAffiliated withComputer Science Department, Universidad de Malaga
  • , Jorge DavilaAffiliated withComputer Science Department, Universidad Politecnica de Madrid

* Final gross prices may vary according to local VAT.

Get Access

Abstract

The main aims of Virtual Private Network (VPN) are to isolate a distributed network from outsiders, as well as to protect the confidentiality and integrity of sensitive information traversing a non-trusted network such as the Internet. However, some problems arise when security is considered as the unique problem because VPN users suffer from restrictions in their access to the network. They are not free to use traditional Internet services such as electronic mail exchange with non-VPN users, and to access Web and FTP servers external to the organization. This paper presents a new solution that allows the open use of traditional network services running over TCP and UDP layers, while maintaining strong security features. The new scheme works at the TCP/IP transport layer and does not require the addition of new hardware because it is a totally software solution. As a consequence, the application is totally portable. Moreover, and because of its implementation at the transport layer, there is no need to modify any traditional communication applications previously installed in the network system.