Analysis of IPSec overheads for VPN servers

Craig Shue, Youngsang Shin, Minaxi Gupta, Jong Youl Choi

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

23 Scopus citations

Abstract

Internet Protocol Security (IPSec) is a widely deployed mechanism for implementing Virtual Private Networks (VPNs). This paper evaluates the performance overheads associated with IPSec. We use Openswan, an open source implementation of IPSec, and measure the running times of individual security operations and also the speedup gained by replacing various IPSec components with no-ops. The main findings of this study include: VPN connection establishment and maintenance overheads for short sessions could be significantly higher than those incurred while transferring data, and cryptographic operations contribute 32 - 60% of the total IPSec overheads.

Original languageEnglish
Title of host publication2005 First Workshop on Secure Network Protocols, NPSec, held in conjunction with ICNP 2005
Subtitle of host publication13th IEEE International Conference on Network Protocols
Pages25-30
Number of pages6
DOIs
StatePublished - 2005
Externally publishedYes
Event2005 First Workshop on Secure Network Protocols, NPSec, held in conjunction with ICNP 2005: 13th IEEE International Conference on Network Protocols - Boston, MA, United States
Duration: Nov 6 2005Nov 6 2005

Publication series

Name2005 First Workshop on Secure Network Protocols, NPSec, held in conjunction with ICNP 2005: 13th IEEE International Conference on Network Protocols
Volume2005

Conference

Conference2005 First Workshop on Secure Network Protocols, NPSec, held in conjunction with ICNP 2005: 13th IEEE International Conference on Network Protocols
Country/TerritoryUnited States
CityBoston, MA
Period11/6/0511/6/05

Fingerprint

Dive into the research topics of 'Analysis of IPSec overheads for VPN servers'. Together they form a unique fingerprint.

Cite this