Presentation | 2004/2/27 Proposal of a VPN Architecture with Policy-based Multiple Association Control Akira KIMURA, Hirosumi YAMAGUCHI, Keiichi YASUMOTO, Teruo HIGASHINO, Masahiro MARUYOSHI, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Virtual private networks (VPNs) have been noticed as one of the most important network technologies since they can provide a secure and reliable connection like a leased line between remote sites on the Internet and/or provider provisioned networks. Recently, the number of sites constructing VPNs is increasing and there is a demand that each site wants to access different VPNs simultaneously. Consequently, a new VPN architecture to enable each site to associate with multiple VPNs under certain policies, is required. In this paper, for provider provisioned IP-based VPNs, we propose a VPN architecture with multiple association control based on users' policies. In our architecture, we can specify users' policies so that (a)the sites which are hostile with a specific site cannot associate with the specified VPN while the site is connecting to the VPN, (b)the number of sites connecting to a VPN is controlled within the specified number, and so on. In order to control multiple association to each VPN, it is required to maintain and manage the policies specified to the VPN and the list of sites which have already connected to the VPN. In this paper, we propose a method to evaluate conditions for multiple association based on the above information in a distributed manner where the policies and site lists are located on distributed PEs (VPN access points on the provide side) and retrieved on demand between those PEs. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | IP-VPN / multiple association / policy / destributed management |
Paper # | NS2003-362,IN2003-317 |
Date of Issue |
Conference Information | |
Committee | NS |
---|---|
Conference Date | 2004/2/27(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Network Systems(NS) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Proposal of a VPN Architecture with Policy-based Multiple Association Control |
Sub Title (in English) | |
Keyword(1) | IP-VPN |
Keyword(2) | multiple association |
Keyword(3) | policy |
Keyword(4) | destributed management |
1st Author's Name | Akira KIMURA |
1st Author's Affiliation | Graduate School of Information Science and Technology, Osaka University() |
2nd Author's Name | Hirosumi YAMAGUCHI |
2nd Author's Affiliation | Graduate School of Information Science and Technology, Osaka University |
3rd Author's Name | Keiichi YASUMOTO |
3rd Author's Affiliation | Graduate School of Information Science, Nara Institute of Science and Technology |
4th Author's Name | Teruo HIGASHINO |
4th Author's Affiliation | Graduate School of Information Science and Technology, Osaka University |
5th Author's Name | Masahiro MARUYOSHI |
5th Author's Affiliation | NTT Information Sharing Platform Laboratories, NTT Corporation |
Date | 2004/2/27 |
Paper # | NS2003-362,IN2003-317 |
Volume (vol) | vol.103 |
Number (no) | 690 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |