Publication detail

Decentralized Secure Communication across NAT

Lubomír Cvrk Jiří Mišurec Petr Daněček

Original Title

Decentralized Secure Communication across NAT

Type

conference paper

Language

English

Original Abstract

When a host in a public network needs to open a connection to another one which is behind a network address translator the connection cannot be established in an ordinary way because of the translation. An approach called “UDP hole punching” allows opening such connection. This article deals with this approach to propose security architecture for communication using IPv4 protocol, introducing so called “implicit security” concept. Key benefits of this concept are ability to connect with any host behind network address translator using just a host’s domain name. Encryption and authentication of all data transmitted through this connection right from the packet sender to the real local receiver is a matter of course. Secure channel is established automatically on-demand and is independent on any application. No additional modification of current standards like NAT, IP v4 or DNS is required.

Keywords

IPv4, DNS, secure communication, TCP protocol

Authors

Lubomír Cvrk Jiří Mišurec Petr Daněček

RIV year

2005

Released

24. 10. 2005

ISBN

89-953729-5-8

Book

Proceedings 2nd International Conference on Electronics, Hardware, Wireless and Optical Communications

Pages from

10

Pages to

23

Pages count

14

BibTex

@inproceedings{BUT16399,
  author="Jiří {Mišurec} and Lubomír {Cvrk} and Petr {Daněček}",
  title="Decentralized Secure Communication across NAT",
  booktitle="Proceedings 2nd International Conference on Electronics, Hardware, Wireless and Optical Communications",
  year="2005",
  volume="1",
  pages="14",
  isbn="89-953729-5-8"
}