| ÇѱÛÁ¦¸ñ(Korean Title) |
ÀÎÅÍ³Ý Å° °ü¸® ÇÁ·ÎÅäÄÝ¿¡ °üÇÑ ¿¬±¸ |
| ¿µ¹®Á¦¸ñ(English Title) |
A study on the key management protocols for the Internet |
| ÀúÀÚ(Author) |
ÀÌ°è»ó
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 10-C NO. 02 PP. 0133 ~ 0140 (2003. 04) |
Çѱ۳»¿ë
(Korean Abstract) |
IPSECÀÇ Ç¥ÁØ Å° °ü¸® ÇÁ·ÎÅäÄÝÀÎ IKE´Â º¹À⼺À¸·Î ¾ß±âµÇ´Â ¿©·¯ ¾Ë·ÁÁø ¹®Á¦Á¡À» °®°í ÀÖ´Ù. ÀÌ ¹®Á¦Á¡À» ÇØ°áÇϱâ À§ÇÑ À¯·ÂÇÑ ÈÄ¼Ó ÇÁ·ÎÅäÄÝ·Î IKE ¹öÀü 2 ÇÁ·ÎÅäÄÝ°ú Just Fast Keying ÇÁ·ÎÅäÄÝÀÌ IETF¿¡¼ ³íÀÇ ÁßÀÌ´Ù. IKE ÈÄ¼Ó ÇÁ·ÎÅäÄÝÀÇ ¼³°è ¿ä±¸»çÇ×À¸·Î´Â ÇÁ·ÎÅäÄÝÀÇ ´Ü¼ø¼º ÀÌ¿Ü¿¡, ¼ºñ½º °ÅºÎ °ø°Ý ´ëÀÀ·Â, PFS Á¦°ø ¿©ºÎ, identity º¸È£, ¾ÏÈ£ Çù»ó ¹× ÀÎÁõ ¹æ½Ä µîÀÌ ÀÖ´Ù. º» °í¿¡¼´Â ÀÌ µÎ ÇÁ·ÎÅäÄÝÀ» IKE ÈÄ¼Ó ÇÁ·ÎÅäÄÝÀÌ ¸¸Á·½ÃÄÑ¾ß ÇÒ ÁÖ¿ä ¿ä±¸»çÇ׺°·Î °¢ ÇÁ·ÎÅäÄÝÀÇ Æ¯Â¡°ú ±× ³»Æ÷ Àǹ̸¦ ºÐ¼®ÇÑ´Ù. |
¿µ¹®³»¿ë
(English Abstract) |
IKE, which is the standard key management protocol for IPSEC, is said to have several known problems. To resolve the problems of the IKE, two protocol proposals are being discussed in the IETF : the IKE version 2 and Just Fast Keying protocols. They should satisfy several protocol design requirements such as the protocol simplicity, the endurability against DOS attacks, the degree of the PFS, the identity protection, the cryptographic negotiation, and the authentication methods. In this paper, we summarize the characteristics of these two protocols and try to analyze their implications according to the protocol design requirements. |
| Å°¿öµå(Keyword) |
ÀÎÅÍ³Ý º¸¾È
IPSEC
Å°°ü¸® ÇÁ·ÎÅäÄÝ
IKEv2
JFK
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
