Design and Optimization of VPN Security Gateway

Zhu   Yanqin; Qian Peide; Hu Yuemei

1st International ICST Conference on Communications and Networking in China

Research Article

Design and Optimization of VPN Security Gateway

Cite: BibTeX Plain Text

@INPROCEEDINGS{10.1109/CHINACOM.2006.344676,
    author={Zhu   Yanqin and Qian Peide and Hu Yuemei},
    title={Design and Optimization of VPN Security Gateway},
    proceedings={1st International ICST Conference on Communications and Networking in China},
    publisher={IEEE},
    proceedings_a={CHINACOM},
    year={2007},
    month={4},
    keywords={Machine learning Security policy database ID3 ECC VPN security gateway},
    doi={10.1109/CHINACOM.2006.344676}
}

Zhu Yanqin
Qian Peide
Hu Yuemei
Year: 2007
Design and Optimization of VPN Security Gateway
CHINACOM
IEEE
DOI: 10.1109/CHINACOM.2006.344676

Zhu Yanqin¹^,*, Qian Peide¹^,*, Hu Yuemei¹^,*

1: School of Computer Science and Technology, Soochow University Suzhou, China

*Contact email: yqzhu@suda.edu.cn, pdqian@suda.edu.cn, 21413017@suda.edu.cn

Abstract

The VPN security gateway provides authentication, confidentiality, and key management. It checks the security policy database (SPD) so as to deal with the inbound and outbound packets. To optimize the performance of the VPN gateway, we have done the relative works in two aspects. On the one hand, we apply the theory of machine learning to the configuration of security policy database (SPD). And the scheme based on the ID3 decision tree is presented. On the other hand, we apply elliptic curve cryptography (ECC) to the key exchange and design the fast algorithms. Smaller keys can be used in ECC than in other public-key systems, but with equivalent levels of security. With our optimization efforts, the efficiency of the VPN security gateway is enhanced greatly.

Keywords: Machine learning Security policy database ID3 ECC VPN security gateway

Published: 2007-04-10
Publisher: IEEE

: http://dx.doi.org/10.1109/CHINACOM.2006.344676