Presentation | 2018-11-16 Firewall traversal method by inserting pseudo TCP header into QUIC Keigo Taga, Junjun Zheng, Koichi Mouri, Shoichi Saito, Eiji Takimoto, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | With the diversification of services, various communication protocols have been developed.Meanwhile, firewalls are installed at the boundary between the internal network such as companies and homes and the Internet. In general, firewalls configuration is whitelist that releases only the port corresponding to the service to be used and blocks the communication of the other ports. Therefore, the other protocols except well-used protocols are blocked by FW. This means that we can not benefit from any new protocols. In this paper, we propose a method to traverse the firewall and enable communication by inserting a pseudo TCP header imitating HTTPS into a packet which will be blocked by FW. Since the capsulated packet by the proposed method disguises by HTTPS camouflaging only when passing through the firewall, the TCP control of the end node does not perform, and the advantages of QUIC are not lost. Furthermore, we implemented the proposed method as Loadable Kernel Module using Netflter in Linux, and verified about its operation and performance. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | QUIC / Firewall / TCP / Capsuling |
Paper # | MoNA2018-37,CNR2018-34 |
Date of Issue | 2018-11-08 (MoNA, CNR) |
Conference Information | |
Committee | MoNA / IN / CNR |
---|---|
Conference Date | 2018/11/15(2days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | Karatsu Civic Exchange Plaza |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | M2M, IoT, Self Organization, Autonomous Distributed Control, Car Area Network, Car-Car network, Car-Road Network, ITS, Big Data Analysis, Cyber Physical System (CPS), Mobile Virtualization, Mobile Application, Cloud Robotics Service, etc. |
Chair | Ryoichi Shinkuma(Kyoto Univ.) / Takuji Kishida(NTT-AT) / Tetsuo Ono(Hokkaido Univ.) |
Vice Chair | Shigeaki Tagashira(Kansai Univ.) / Gen Kitagata(Tohoku Univ.) / Kenji Ishida(Hiroshima City Univ.) / Masayuki Kanbara(NAIST) / Kazunori Takashio(Keio Univ.) |
Secretary | Shigeaki Tagashira(Kyushu Univ.) / Gen Kitagata(NEC) / Kenji Ishida(Kyoto Univ.) / Masayuki Kanbara(NTT DOCOMO) / Kazunori Takashio(KDDI Research) |
Assistant | Ken Usui(KDDI Research) / Kenji Kanai(Waseda Univ.) / / Wataru Mito(SECOM) / Yuka Kobayashi(Toshiba) / Tatsuya Ishihara(NTT) |
Paper Information | |
Registration To | Technical Committee on Mobile Network and Applications / Technical Committee on Information Networks / Technical Committee on Cloud Network Robotics |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Firewall traversal method by inserting pseudo TCP header into QUIC |
Sub Title (in English) | |
Keyword(1) | QUIC |
Keyword(2) | Firewall |
Keyword(3) | TCP |
Keyword(4) | Capsuling |
1st Author's Name | Keigo Taga |
1st Author's Affiliation | Ritsumeikan University(Ritsumei Univ) |
2nd Author's Name | Junjun Zheng |
2nd Author's Affiliation | Ritsumeikan University(Ritsumei Univ) |
3rd Author's Name | Koichi Mouri |
3rd Author's Affiliation | Ritsumeikan University(Ritsumei Univ) |
4th Author's Name | Shoichi Saito |
4th Author's Affiliation | Nagoya Institute of Technology(NIT) |
5th Author's Name | Eiji Takimoto |
5th Author's Affiliation | Ritsumeikan University(Ritsumei Univ) |
Date | 2018-11-16 |
Paper # | MoNA2018-37,CNR2018-34 |
Volume (vol) | vol.118 |
Number (no) | MoNA-305,CNR-306 |
Page | pp.pp.87-92(MoNA), pp.93-98(CNR), |
#Pages | 6 |
Date of Issue | 2018-11-08 (MoNA, CNR) |