SatIPSec : an optimized solution for securing multicast and unicast satellite transmissions - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès Année : 2004

SatIPSec : an optimized solution for securing multicast and unicast satellite transmissions

Résumé

In satellite networks, the security of data exchanged on the satellite segment is threatened by many types of attacks such as eavesdropping, intrusion of unauthorized satellite terminals, satellite terminal cloning... The integration of security mechanisms is therefore considered today as an essential requirement. Some existing solutions may be recommended, however they do not offer all the necessary security services. For instance, the optional security mechanisms defined in the DVB-RCS standard provide insufficient security support, especially in satellite networks with natural broadcast/multicast capability over large areas. The use of well-known upper layers security protocols such as SSL (Secure Socket Layer) or IPSec/IKE can be considered too, but they are dedicated to unicast communications. The SatIPSec solution has been designed to provide an optimized and adapted security solution for satellite networks. It offers a new way of transparently and efficiently securing unicast and multicast satellite transmissions, with a strong access control, data confidentiality, data integrity, and data authentication as security services. SatIPSec has recently been implemented in a demonstrator developed in the context of the SATIP6 IST project. In this implementation, which allows to manage centrally secure multicast groups and Virtual Private Networks, key distribution is achieved according to the “Flat Multicast Key Exchange” protocol of SatIPSec, and data are encrypted and authenticated according to the IPSec protocol adapted to multicast. This paper introduces the principles of the security mechanisms involved in SatIPSec, and presents the features of the implementation and its results.
Fichier principal
Vignette du fichier
aiaa_2004_satipsec.pdf (357.01 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)

Dates et versions

hal-00369082 , version 1 (18-03-2009)

Identifiants

  • HAL Id : hal-00369082 , version 1

Citer

Laurence Duquerroy, Sébastien Josset, Olivier Alphand, Pascal Berthou, Thierry Gayraud. SatIPSec : an optimized solution for securing multicast and unicast satellite transmissions. 22nd AIAA International Communications Satellite Systems Conference, May 2004, Monterey, United States. 11p. ⟨hal-00369082⟩
306 Consultations
350 Téléchargements

Partager

Gmail Facebook X LinkedIn More