Securing ad-hoc networks using IPsec
- 1 January 2005
- conference paper
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
Abstract
The use of IPSec for securing communication between nodes of wireless and mobile ad hoc networks has traditionally been considered difficult. We describe an IPSec-based architecture and implementation for ad hoc networks that can seamlessly handle node mobility and IP address change. The approach can he used for securing application traffic as well as configuration and mobility management protocol traffic. A certificate-based approach that aids dynamic key generation and distribution is used for creating security associations between nodes. Simple and backward compatible extensions to the IPSec and PKIX protocols that do not violate existing and proposed standards are described, and an existing implementation is discussed. Initial experimental evaluation reveals that the per-packet latency overhead at the end-host for using our proposed mechanisms is tolerable.Keywords
This publication has 6 references indexed in Scilit:
- Identity-Based Encryption from the Weil PairingSIAM Journal on Computing, 2003
- Internet X.509 Public Key Infrastructure Certificate Management Protocols1999
- IP Authentication Header1998
- IP Encapsulating Security Payload (ESP)1998
- The Internet Key Exchange (IKE)1998
- Security Architecture for the Internet Protocol1998