차세대 인증 기술을 적용한 Post-Quantum 원격접속 터널링 프로토콜 연구

Vol. 34, No. 6, pp. 1321-1333, 12월. 2024
10.13089/JKIISC.2024.34.6.1321, Full Text:
Keywords: remote access, VPN, FIDO, CRYSTALS-KYBER
Abstract

As remote work becomes more prevalent, VPNs are widely used in various remote access environments. However, traditional VPNs face challenges, such as continuous authentication issues and insufficient resistance to quantum computing threats. Recently, SDP-based ZTNA has gained attention as a VPN alternative, but many ZTNA solutions still rely on VPNs due to compatibility issues with existing infrastructure. This paper proposes a post-quantum remote access tunneling protocol that enhances traditional protocols using biometric authentication based on FIDO and WebAuthn standards, along with CRYSTALS-Kyber, the KEM algorithm selected by NIST for post-quantum cryptography. The proposed protocol prevents phishing through domain-mapped authentication information, offers strong authentication, and improves security. Despite these features, it shows minimal speed difference compared to WireGuard's connection process and delivers approximately 54.55% better performance than OpenVPN.

Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
임성식, 오수현, 김서연, 김동우, 한수진, 이기찬, "A Study on Post-Quantum Remote Access Tunneling ProtocolUtilizing Next-Generation Authentication," Journal of The Korea Institute of Information Security and Cryptology, vol. 34, no. 6, pp. 1321-1333, 2024. DOI: 10.13089/JKIISC.2024.34.6.1321.

[ACM Style]
임성식, 오수현, 김서연, 김동우, 한수진, and 이기찬. 2024. A Study on Post-Quantum Remote Access Tunneling ProtocolUtilizing Next-Generation Authentication. Journal of The Korea Institute of Information Security and Cryptology, 34, 6, (2024), 1321-1333. DOI: 10.13089/JKIISC.2024.34.6.1321.