Sciweavers

ESORICS
2004
Springer

Hindering Eavesdropping via IPv6 Opportunistic Encryption

14 years 4 months ago
Hindering Eavesdropping via IPv6 Opportunistic Encryption
This paper presents an opportunistic encryption scheme strictly layered on top of IPv6. Assuming that a node needs to send data toward another node, our proposal enables the dynamic configuration of an encrypted tunnel between the two nodes’ IPsec gateways. The main contribution of this paper is to propose a solution that is fully distributed and does not rely on any global Trusted Third Party (such as DNSSEC or a PKI). The IPsec gateways are discovered using IPv6 anycast, and they derive authorization from authorization certificates and Crypto-Based Identifiers (CBIDs). The result is a robust and easily deployable opportunistic encryption service for IPv6.
Claude Castelluccia, Gabriel Montenegro, Julien La
Added 01 Jul 2010
Updated 01 Jul 2010
Type Conference
Year 2004
Where ESORICS
Authors Claude Castelluccia, Gabriel Montenegro, Julien Laganier, Christoph Neumann
Comments (0)