Abstract
This paper evaluates the performance of COPS over secure TLS and IPsec connections. For large size data, when we apply authentication and encryption, the throughput degrades compared with the throughput without authentication or encryption. COPS has native security mechanisms, but it also has limitations. As defined in RFC 2478, COPS includes no standard key management and no data privacy hop-by-hop security. To be deployed, it needs to support access control models. Based on our comparison of the performance of the implementation of COPS, COPS over TLS and COPS over IPsec, we propose a strategic approach to secure COPS.
Chapter PDF
Similar content being viewed by others
References
D. Durham, J. Boyle, R. Cohen, S. Herzog, R. Rajan and A. Sastry, “The COPS (Common Open Policy Service) Protocol”, IETF RFC 2748, January 2000
T. Dierks and C. Allen, “TLS Protocol version 1.0”, IETF RFC 2246, January 1999
Jesse Walker and Amol Kulkarni, “COPS Over TLS”, IETF Internet Draft, June 2002, http://www.ietf.org/internet-drafts/draft-ietf-rap-cops-tls-04.txt
S. Kent and R. Atkinson, “Security Architecture for the Internet Protocol”, IETF RFC 2401, November 1998.
S. Kent and R. Atkinson, “IP Authentication Header”, IETF RFC 2402, November 1998.
S. Kent and R. Atkinson, “IP Encapsulation Security Payload (ESP)”, IETF RFC 2403, November 1998.
D. Harkins and D. Carrel, “The Internet Key Exchange (IKE)”, IETF RFC 2409, November 1998.
S. Deering and R. Hinden, “Internet Protocol version 6 Specification”, IETF RFC 2460, November 1998.
H. Orman, “The OAKLEY Key Determination Protocol”, IETF RFC 2412, November 1998.
J. Postel, “Internet Protocol”, IETF RFC 791, September 1981.
J. Walker, “CMS Over COPS”, IETF Internet Draft, May 2000. http://www.alternic.org/drafts/drafts-j-k/draft-jwalker-cops-cms-00.txt
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Zeng, Y., Cherkaoui, O. (2002). Performance Study of COPS over TLS and IPsec Secure Session. In: Feridun, M., Kropf, P., Babin, G. (eds) Management Technologies for E-Commerce and E-Business Applications. DSOM 2002. Lecture Notes in Computer Science, vol 2506. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-36110-3_14
Download citation
DOI: https://doi.org/10.1007/3-540-36110-3_14
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-00080-8
Online ISBN: 978-3-540-36110-7
eBook Packages: Springer Book Archive