1 / 15

UCL

UCL. Overview of VPN Work. Projects Past ANDROID RADIOACTIVE Present 6NET ICB. VPN Technologies Netcelo VPN Manager ISI - X-Bone DRDC - DVC UMU - PBNM Entrust VPN Connector. Current Work. ANDROID. Netcelo IPv6 VPN Manager Full Mesh Topology Active Network Techniques Funnelweb

vienna
Télécharger la présentation

UCL

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. UCL Overview of VPN Work

  2. Projects Past ANDROID RADIOACTIVE Present 6NET ICB VPN Technologies Netcelo VPN Manager ISI - X-Bone DRDC - DVC UMU - PBNM Entrust VPN Connector Current Work VPN Workshop

  3. ANDROID • Netcelo IPv6 VPN Manager • Full Mesh Topology • Active Network Techniques • Funnelweb • Transcoding Active Gateway VPN Workshop

  4. RADIOACTIVE • ISI X-Bone • UCL extended X-Bone for IPv6 capability • Demonstrated at DANCE - May 2002 • 3 sites • Star Topology • Possibility of sub-optimal topology VPN Workshop

  5. 6NETVPN Infrastructure DeploymentWork Package 4 - Activity 4.3 “To look at the issues surrounding the provision of IPv6 dynamic VPN technology and deploy an IPv6-Enabled VPN Infrastructure”

  6. ICB “To carry out an experimental deployment of an IPv6-Enabled VPN Infrastructure upon which one can experiment on the sort of policies that coalition networks require”

  7. UCL IPv6 VPN Deployment Requirements • IPv6-Enabled • VPN Management • Security Infrastructure • Policy Infrastructure • Non-Fully Meshed Topology • Failure Tolerant • Deployable Over Multiple Platforms VPN Workshop

  8. Future Requirements • Topology • Flexible • Dynamic • Routing • Dynamic • Secure • Multicast • QoS VPN Workshop

  9. Building An Ideal System • Each system excels in its particular area of focus • X-Bone – Overlay Hierarchy, Topology • DVC – Distributed, Localised Control • UMU-PBNM – Security Infrastructure • Want the best of all worlds VPN Workshop

  10. Ideal System – Existing Features • Localisation and Security of DVC • Distributed Nature of DVC • Wide Deployability of DVC/X-Bone • Hierarchic Nature of X-Bone • Topological Flexibility of X-Bone/UMU • Policy Management of UMU • Security Management of UMU VPN Workshop

  11. Ideal System – New Features • Dynamic Topology • Secure (Non-Decrypted) Routing over VPN • Multicast Capability • QoS Provision VPN Workshop

  12. Issues • Definition of a “VPN” • Scope – Edge vs. Node • VPN Management System • Central / Coalition / Combination • Dynamic Tunnel Establishment • Tunnel Management • Minimised Overheads VPN Workshop

  13. Issues (cont.) • Security • Authentication • PKI Infrastructure • Certificate Enrolment & Management • Authorisation • Distributed Access Control • Policy Management • Automated Policy Negotiation VPN Workshop

  14. Issues (cont.) • Topology & Routing • Ability To Choose Topology • Dynamic Topology • Requires Dynamic Routing • Bootstrapping • Secure Routing VPN Workshop

  15. Manish Ladm.lad@cs.ucl.ac.uk Department of Computer Science University College London

More Related