A Secure Packet Filtering Mechanism for Tunneling over Internet

机译：通过Internet进行隧道传输的安全数据包过滤机制

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Unlike Internet design policies of early stage, various types of tunneling are currently used in Internet for IPv4/IPv6 transition, IP multicasting and IP mobility. As tunneled packets have dual IP headers, general firewall systems apply the filtering rules only to the outer header but not to the inner header when these packets pass the firewall. Thus, many present firewall systems may have serious security problems to packet filtering for tunneled packets. To resolve this issue, a new packet filtering mechanism to filter tunneled packets is proposed in this paper. We design and implement the packet filtering mechanism by using Linux Netfilter. Through this study, the packet filtering system was also found operating correctly in the IPv6-in-IPv4/IP-in-IP tunneling.

机译：与早期的Internet设计策略不同，Internet中目前使用各种类型的隧道进行IPv4 / IPv6转换，IP多播和IP移动性。由于隧道数据包具有双重IP标头，因此，当这些数据包通过防火墙时，常规防火墙系统仅将过滤规则应用于外部标头，而不应用于内部标头。因此，许多当前的防火墙系统对于隧道化分组的分组过滤可能存在严重的安全问题。为了解决这个问题，本文提出了一种新的包过滤机制来过滤隧道包。我们使用Linux Netfilter设计和实现包过滤机制。通过这项研究，还发现数据包过滤系统在IPv6-in-IPv4 / IP-in-IP隧道中正常运行。

著录项

来源
《International Conference on Embedded Software and Systems(ICESS 2007); 20070514-16; Daegu(KR)》|2007年|P.641-652|共12页
会议地点 Daegu(KR)
作者
Wan-Jik Lee; Seok-Yeol Heo; Tae-Young Byun; Young-Ho Sohn; Ki- Jun Han;
展开▼
作者单位

Department of Bio-Electronics Pusan National University of Pusan, Korea;

School of Computer and Information Communications Engineering Catholic University of Daegu, Gyeongsan, Gyeongbuk, Korea;

School of Electrical Engineering and Computer Science Yeungn;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类计算机软件;
关键词
packet filtering; tunneling; firewall; netfilter; security;

机译：数据包过滤;隧道;防火墙; netfilter;安全性;

相似文献

外文文献
中文文献
专利

1. Energy Efficient Secure Firewall and Packet Filtering System in Wireless Sensor Networks [J] . Manjuprasad B, Andhe Dharani, Shantharam Nayak American Journal of Sensor Technology . 2014,第3期

机译：无线传感器网络中的节能型安全防火墙和数据包过滤系统
2. Identifying Spoofed Packets Origin using Hop Count Filtering and Defence Mechanisms against Spoofing Attacks [J] . Israel Umana, Sornalakshmi Krishnan International Journal of Engineering Trends and Technology . 2015,第6期

机译：使用跳数过滤和防御机制来识别欺骗数据包的来源
3. Distributed Denial-of-Service Attack Packet Filtering and Control Mechanisms [J] . Rui Guo, Dongqi Wang Sensor Letters: A Journal Dedicated to all Aspects of Sensors in Science, Engineering, and Medicine . 2014,第2期

机译：分布式拒绝服务攻击数据包过滤和控制机制
4. A Secure Packet Filtering Mechanism for Tunneling over Internet [C] . Wan-Jik Lee, Seok-Yeol Heo, Tae-Young Byun, International Conference on Embedded Software and Systems . 2007

机译：用于互联网隧穿的安全数据包过滤机制
5. Evaluating the effectiveness of packet filter firewall applications in a "dual stack" Internet Protocol environment. [D] . Snyder, Walter C., II. 2010

机译：在“双栈” Internet协议环境中评估数据包筛选器防火墙应用程序的有效性。
6. A Hybrid Deep Learning-Driven SDN Enabled Mechanism for Secure Communication in Internet of Things (IoT) [O] . Danish Javeed, Tianhan Gao, Muhammad Taimoor Khan, 2021

机译：一种混合深度学习驱动的SDN支持物联网安全通信的机制（IOT）
7. Deep Packet Filtering Mechanism for Secure Internetworks [O] . Hyun Woo Kim and Eun Et.al 2021

机译：安全互联术的深包过滤机制

A Secure Packet Filtering Mechanism for Tunneling over Internet

摘要

著录项

相似文献

相关主题

期刊订阅