Analysis and improvement of the Internet‐Draft IKEv3 protocol. (21st September 2016)
- Record Type:
- Journal Article
- Title:
- Analysis and improvement of the Internet‐Draft IKEv3 protocol. (21st September 2016)
- Main Title:
- Analysis and improvement of the Internet‐Draft IKEv3 protocol
- Authors:
- Cheng, Qingfeng
Lu, Siqi
Ma, Jianfeng - Abstract:
- Summary: Internet protocol (IP) is the kernel of the TCP/IP protocol family. Because IP is the only one that is shared by all high‐level protocols in TCP/IP. So the security of the IP is particularly important to the whole communication network. Fortunately, IPsec provides excellent protection for the kIP security. As a part of the IPsec, Internet Key Exchange (IKE) protocol can achieve security association negotiation, key generation, and identity authentication. The study of IKEv2, both in its application and security analysis, has been relatively mature. When the Internet Engineering Task Force published the Internet‐Draft IKEv3 protocol, there is not much attention and research on it. In this paper, we analyze the security and authentication of IKEv3 by formal verification and show that IKEv3 is susceptible to reflection attack and DoS attack. Then we propose a new variant of the IKEv3 protocol, which both resists reflection attack and mitigates the impact of the DoS attack. Abstract : In this paper, we analyze the security and authentication of IKEv3 by formal verification and show that IKEv3 is susceptible to reflection attack and DoS attack. Then, we propose a new variant of the IKEv3 protocol, which not only resists reflection attack but also mitigates the impact of the DoS attack.
- Is Part Of:
- International journal of communication systems. Volume 30:Number 9(2017)
- Journal:
- International journal of communication systems
- Issue:
- Volume 30:Number 9(2017)
- Issue Display:
- Volume 30, Issue 9 (2017)
- Year:
- 2017
- Volume:
- 30
- Issue:
- 9
- Issue Sort Value:
- 2017-0030-0009-0000
- Page Start:
- n/a
- Page End:
- n/a
- Publication Date:
- 2016-09-21
- Subjects:
- cost‐based framework, DoS attack, formal verification, IKEv3
Telecommunication systems -- Periodicals
621.382 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/dac.3194 ↗
- Languages:
- English
- ISSNs:
- 1074-5351
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4542.172515
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 2228.xml