Abstract
Concern about SSL VPN technology as a class of VPNs has been growing recently because a key advantage of SSL VPN is that it requires no specialized client software. When a user requests access to a server, the SSL client module, a Java applet code, is downloaded into the host first. However, it is quite likely that not all applications run well because a client can not connect with a server through an HTTPS tunnel in some applications. This study proposes a remote access VPN architecture that allows any application to use the VPN. The proposed VPN uses the same Java applet as existing SSL VPNs, but the function of the applet, which we call mobile code, is changed dynamically by Java Remote Method Invocation (RMI). The VPN client applet can cooperate with a VPN server and a firewall in server side. As a result, the proposed VPN has strength against Denial of Service (DoS) attacks.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Stallings, W.: Cryptography and Network Security: Principles and Practice, 2nd edn. Prentice Hall, New Jersey (1998)
Cheswick, W.R., Bellovin, S.M.: Firewalls and Internet Security. Addison-Wesley, Boston (1994)
Kent, S., Atkinson, R.: Security Architecture for the Internet Protocol, RFC 2401 (November 1998)
Hamzeh, K., Pall, G., Verthein, W., Taarud, J., Little, W., Zorn, G.: Point-to-Point Tunneling Protocol (PPTP), RFC 2637 (July 1999)
Leech, M., Ganes, M., Lee, Y., Kuris, R., Koblas, D., Jones, L.: SOCKS Protocol Version 5, RFC 1928 (March 1996)
Freier, A., Karlton, P., Kocher, P.: The SSL 3.0 Protocol, Netscape Communications Corp., November 18 (1996)
Dierks, T., Allen, C.: The TLS Protocol Version 1.0, RFC 2246 (January 1999)
Ylonen, T., Kivinen, T., Saarinen, M., Rinne, T., Lehtinen, S.: SSH Protocol Architecture, draft-ietf-secsh-architecture-14.txt, IETF (July 2003)
Aventail Corp., http://www.aventail.com/
ArrayNetworks Inc., https://www.arraynetworks.net/
Sun Microsystems, Inc., Java Remote Method Invocation, http://java.sun.com/products/jdk/rmi/
netfilter/iptables, http://www.netfilter.org/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Shiraishi, Y., Fukuta, Y., Morii, M. (2004). Remote Access VPN with Port Protection Function by Mobile Codes. In: Chae, KJ., Yung, M. (eds) Information Security Applications. WISA 2003. Lecture Notes in Computer Science, vol 2908. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24591-9_2
Download citation
DOI: https://doi.org/10.1007/978-3-540-24591-9_2
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20827-3
Online ISBN: 978-3-540-24591-9
eBook Packages: Springer Book Archive