ISSN: 2996-671X
Authors: Sukegawa T , Akashi S and Matsuzawa T
In recent years, diverse work styles, such as satellite office work and remote work, have become widespread. In order to securely and smoothly connect multiple sites, such as office and home or office and satellite office, it is important to construct a network environment that can realize inter-site communication. At such sites, inter-site VPNs are used to achieve highly reliable communication. We focused on VPNs between multiple sites, which have been studied as the number of sites increases. For VPNs between multiple sites, Dynamic Multipoint VPN, which establishes a tunnel connecting multiple sites, and GET VPN, which shares the same policy with a group, has been proposed. In this study, we proposed a method of sharing policies using Multicast Cryptography. Multicast Cryptography is an encryption scheme that can be decrypted only by receivers selected by the sender. The proposed method does not require a single key management server in the GET VPN, and the sender can share the policy by selecting the receivers. Performance evaluation showed that the proposed method has the same establishment time as existing IPsec implementations and is superior to existing methods when the number of sites increases. We also discussed that the proposed method not only replaces existing multi-site communication, but is very useful for networks with unbalanced privileges, since the sender can choose the receivers.
Keywords: Virtual Private Networks (VPNs); Secure Sockets Layer (SSL); Generic Routing Encapsulation (GRE); Dynamic Multipoint VPN (DMVPN)
Chat with us on WhatsApp
