Abstract
This paper propose method to solve the security problems of establishing trust zone which is changed by security policy in large scale networks containing multiple VPNs. Therefore, we surveyed the vulnerability of VPN technologies and it analysis various models suitable for trust zone. By simulations of various models, we have the cascade perimeter defence policy model having the merit as such an efficient transit cost and the strictly isolation for trust zone. This model can protect the trust zone from the public network by dividing the trust zone according to each VPN group and it shows the better transit performance by cascading the position of perimeter defence policy.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Landwehr, Goldschlag: Security Issues in Networks with Internet Access. Proc. IEEE 85(12) (December 1997)
Denning, D.E.: Intrusion Detection Model. IEEE Transactions on Software Engineering SE-13, 222–232 (1987)
Jae-Woo, Y., Seung-Hyung, L.: The research trend of IP-based VPN Protocol: Scalability and Security”, Korea Institute of Information Security & Cryptology. Journal of Information Security & Cryptology 11(6), 43–53 (2001)
Frame Relay Forum, The Path to MPLS, WAVESMITH NETWORK, white paper (2001)
Knight, P., Gleeson, B.: Network based IP VPN Architecture using Virtual Routers, IETF Internet Draft Provider Provisioned VPN WG (JULY 2002)
Nagarajan, A.: Generic Requirements for Provider Provisioned VPN, IETF Internet Draft Provider Provisioned VPN WG (December 2002)
ITU-T, Recommendation Y.1331, Network Based VPNs - Generic Architecture and Service Requirements, ITU-T (2002)
Behringer, M.: Analysis of the Security of the MPLS Architecture, IETF Internet Draft Provider Provisioned VPN WG (October 2002)
Callon, R., Suzuki, M.: A Framework for Layer 3 Provider Provisioned Virtual Private Networks, IETF Internet Draft Provider Provisioned VPN WG, October(2002)
ITU-T Recommendation Y.1311-1, Network Based IP VPN over MPLS architecture, ITU-T (2001)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Na, W.S., Kim, J.G., Ryoo, I. (2004). Perimeter Defence Policy Model of Cascade MPLS VPN Networks. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds) Computational Science and Its Applications – ICCSA 2004. ICCSA 2004. Lecture Notes in Computer Science, vol 3043. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24707-4_115
Download citation
DOI: https://doi.org/10.1007/978-3-540-24707-4_115
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-22054-1
Online ISBN: 978-3-540-24707-4
eBook Packages: Springer Book Archive