Home

Simple-VPN: Simple IPsec Configuration

Shreyas Srivatsan; Maritza Lupe Johnson; Steven Michael Bellovin

Title:
Simple-VPN: Simple IPsec Configuration
Author(s):
Srivatsan, Shreyas
Johnson, Maritza Lupe
Bellovin, Steven Michael
Date:
Type:
Technical reports
Department:
Computer Science
Permanent URL:
Series:
Columbia University Computer Science Technical Reports
Part Number:
CUCS-020-10
Publisher:
Department of Computer Science, Columbia University
Publisher Location:
New York
Abstract:
The IPsec protocol promised easy, ubiquitous encryption. That has never happened. For the most part, IPsec usage is confined to VPNs for road warriors, largely due to needless configuration complexity and incompatible implementations. We have designed a simple VPN configuration language that hides the unwanted complexities. Virtually no options are necessary or possible. The administrator specifies the absolute minimum of information: the authorized hosts, their operating systems, and a little about the network topology; everything else, including certificate generation, is automatic. Our implementation includes a multitarget compiler, which generates implementation-specific configuration files for three different platforms; others are easy to add.
Subject(s):
Computer science
Item views:
183
Metadata:
text | xml

In Partnership with the Center for Digital Research and Scholarship at Columbia University Libraries/Information Services | Terms of Use