콘텐츠 감사를 위한 IPsec VPN 패킷 분석 기술 연구

Vol. 34, No. 1, pp. 41-52, 2월. 2024
https://doi.org/10.13089/JKIISC.2024.34.1.41, Full Text:
Keywords: Audit, IPsec VPN, IKEv2, ESP
Abstract

Security audits of IPsec VPNs are crucial for identifying vulnerabilities caused by impleme- ntation flaws or misconfigurations, as well as investigating incidents. Nevertheless, auditing IPsec VPN presents noteworthy challenge due to the encryptiong of network contents which ensere confidentiality, integrity, authentications and more. Some researchers have suggested using man-in-the-middle(MITM) techniques to overcome this challenge. MITM techniques require direct participation in the network and prior knowledge of the pre-shared key for authentication. This causes temporary network disconnection for security audits, and it is impossible to analyse data collected before the audit. In this paper, we present an analysis technique aimed at ensuring network continuity without relying on a specific IPsec VPN topologies or authentication method. Therefore, it is anticipated that this approach will be effective, practical and adaptable for conducting IPsec VPN security

Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
박정형, 류재철, 윤재남, "IPsec VPN Encrypted Packet Analysis Method for Contents Auditing," Journal of The Korea Institute of Information Security and Cryptology, vol. 34, no. 1, pp. 41-52, 2024. DOI: https://doi.org/10.13089/JKIISC.2024.34.1.41.

[ACM Style]
박정형, 류재철, and 윤재남. 2024. IPsec VPN Encrypted Packet Analysis Method for Contents Auditing. Journal of The Korea Institute of Information Security and Cryptology, 34, 1, (2024), 41-52. DOI: https://doi.org/10.13089/JKIISC.2024.34.1.41.