UCL Overview of VPN Work. 10/11 July 2003VPN Workshop2 Current Work Projects Projects  Past  ANDROID  RADIOACTIVE  Present  6NET  ICB VPN Technologies.

Slides:

Advertisements

Similar presentations

Brief-out: Isolation Working Group Topic discussion leader: Ken Birman.

Advertisements

APNOMS03 1 A Resilient Path Management for BGP/MPLS VPN Jong T. Park School of Electrical Eng. And Computer Science Kyungpook National University

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

Joe Touch USC/ISI July 10, The X-Bone ICB Meeting July 10, 2003 Joe Touch Director, Postel Center for Experimental Networking Computer Networks.

Identifying MPLS Applications

Generalized Multiprotocol Label Switching: An Overview of Signaling Enhancements and Recovery Techniques IEEE Communications Magazine July 2001.

University of Würzburg Department of Distributed Systems Prof. Dr. P. Tran-Gia Challenges of (P2P-based) Scalable Multicast in Infrastructure-based Mobile.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Deployment of MPLS VPN in Large ISP Networks

Sales Guide for DES-3810 Series Aug 2011 D-Link HQ.

L. Alchaal & al. Page Offering a Multicast Delivery Service in a Programmable Secure IP VPN Environment Lina ALCHAAL Netcelo S.A., Echirolles INRIA.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.

IP EDGE DEVICES A solution for the Internet Migration Patrick Cocquet, 6WIND CEO, IPv6 Forum VP Dubai IPv6 Forum Summit – February 2001.

Secure Network Bootstrapping Infrastructure May 15, 2014.

Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Developed by NRNS Inc. July 2, 2003.

UCL VPN Update. 6NET “To look at the issues surrounding the provision of IPv6 dynamic VPN technology and deploy an IPv6- Enabled VPN Infrastructure”

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

URSA: Providing Ubiquitous and Robust Security Support for MANET

CLOUD COMPUTING AN OVERVIEW & QUALITY OF SERVICE Hamzeh Khazaei University of Manitoba Department of Computer Science Jan 28, 2010.

6winit at IPv6 Concertation Meeting 14/10/02 1 Peter T. Kirstein University College London Dynamic VPN Needs for UCL-CS.

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

A Survey on Wireless Mesh Networks Sih-Han Chen 陳思翰 Department of Computer Science and Information Engineering National Taipei University of Technology.

King Fahd University of Petroleum and Minerals Electrical Engineering Department EE-400 Telecommunication Networks Internet Protocol Version 6 IPv6 Abdul.

SERVER LOAD BALANCING Presented By : Priya Palanivelu.

3 rd SG13 Regional Workshop for Africa on “ITU-T Standardization Challenges for Developing Countries Working for a Connected Africa” (Livingstone, Zambia,

The Future of the Internet Jennifer Rexford ’91 Computer Science Department Princeton University

A Policy-Based Optical VPN Management Architecture.

Multicast Security Issues and Solutions. Outline Explain multicast and its applications Show why security is needed Discuss current security implementations.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

1 CCM Deployment Models Wael K. Valencia Community College.

CNRI Handle System and its Applications

Morteza Yousefi University of Science & Technology of Mazandaran Network Virtualization 1 of 22 Network Virtualization.

Introduction to Networking Concepts. Introducing TCP/IP Addressing Network address – common portion of the IP address shared by all hosts on a subnet/network.

Networks Research Group Deployment of an IPv6-Enabled Dynamic VPN Infrastructure.

Workshop, Lisbon, August Panel discussion about networking architecture issues

The Coalition Peering Domain A New Entity in the Routing Landscape Manish Lad, Saleem Bhatti, Peter Kirstein, Steve Hailes Dept. Computer Science, UCL.

IPv6 activities in Greece Dimitrios Kalogeras, Ph.d.

MULTICAST SECURITY GROUP KEY MANAGEMENT PROTOCOL COURSE CMSC 621.

Architecting the Network Part 3 Geoff Huston Chief Scientist, Internet Telstra ISOC Workshop.

The Research and Education Network: Platform for Innovation Heather Boyles, Next Generation Network Symposium Malaysia 2007-March-15.

61st IETF Washington DC November 2004 BGP/MPLS IP Multicast VPNs draft-yasukawa-l3vpn-p2mp-mcast-00.txt Seisho Yasukawa (NTT) Shankar Karuna (Motorola)

Management for IP-based Applications Mike Fisher BTexaCT Research

Application Policy on Network Functions (APONF) G. Karagiannis and T.Tsou 1.

Virtual Private Ad Hoc Networking Jeroen Hoebeke, Gerry Holderbeke, Ingrid Moerman, Bard Dhoedt and Piet Demeester 2006 July 15, 2009.

Dynamic Virtual Networks (DVNE) Margaret Wasserman & Paddy Nallur November 11, 2010 IETF Beijing, China.

1 Mobile Networks logica Contents Confidential & Proprietary to Logica © 2001 Application-Level Active Networks Presented at Dublin Breakfast Briefing,

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Introducing Network Design Concepts Designing and Supporting Computer Networks.

Adaptive Web Caching CS411 Dynamic Web-Based Systems Flying Pig Fei Teng/Long Zhao/Pallavi Shinde Computer Science Department.

IPv6 Practices on China Mobile IP Bearer Network draft-chen-v6ops-ipv6-bearer-network-trials-00.txt IETF 81-Quebec, July 2011 G. Chen, T. Yang, L. Li and.

Data Network Designing and Evaluation

81th IETF, QuebecMTMA Multicast Tree Mobility Anchor (MTMA) Juan Carlos Zúñiga, Akbar Rahman InterDigital Luis M. Contreras, Carlos J. Bernardos Universidad.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Routing with a Distance Vector Protocol in an Enterprise Network Introducing.

1 Wide Area Network Emulation on the Millennium Bhaskaran Raman Yan Chen Weidong Cui Randy Katz {bhaskar, yanchen, wdc, Millennium.

Distributed test-lab: Our take Peter Druschel Rice University.

STRUDEL: Supporting Trust in the Dynamic Establishment of peering coaLitions April 2006 Daniele Quercia, Manish Lad, Stephen Hailes, Licia Capra, and Saleem.

Draft-li-idr-cc-bgp-arch-00IETF 88 IDR1 An Architecture of Central Controlled Border Gateway Protocol (BGP) draft-li-idr-cc-bgp-arch-00 Zhenbin Li, Mach.

NEMO RO Use Case, Issues & Requirements in the MANEMO Scenarios.

I2RS Overlay usecase 1 Fangwei hu Bhumip Khasnabish.

Agenda Current Network Limitations New Network Requirements About Enterasys Security Branch Office Routers Overall Enterprise Requirements Proposed Solution.

Advanced Computer Networks

Dedicated Multicast-LMA (M-LMA)

Multi-channel, multi-radio wireless networks

Architecting the Network Part 3

Public Key Infrastructure from the Most Trusted Name in e-Security

Types of topology. Bus topology Bus topology is a network type in which every computer and network device is connected to single cable. When it has exactly.

CAN (Campus Area Network)

Computer Networks Protocols

Nolan Leake Co-Founder, Cumulus Networks Paul Speciale

Presentation transcript:

UCL Overview of VPN Work

10/11 July 2003VPN Workshop2 Current Work Projects Projects  Past  ANDROID  RADIOACTIVE  Present  6NET  ICB VPN Technologies  Netcelo VPN Manager  ISI - X-Bone  DRDC - DVC  UMU - PBNM  Entrust VPN Connector

10/11 July 2003VPN Workshop3 ANDROID Netcelo IPv6 VPN Manager Netcelo IPv6 VPN Manager Full Mesh Topology Full Mesh Topology Active Network Techniques Active Network Techniques  Funnelweb  Transcoding Active Gateway

10/11 July 2003VPN Workshop4 RADIOACTIVE ISI X-Bone ISI X-Bone UCL extended X-Bone for IPv6 capability UCL extended X-Bone for IPv6 capability Demonstrated at DANCE - May 2002 Demonstrated at DANCE - May 2002  3 sites  Star Topology Possibility of sub-optimal topology Possibility of sub-optimal topology

6NET VPN Infrastructure Deployment Work Package 4 - Activity 4.3 “To look at the issues surrounding the provision of IPv6 dynamic VPN technology and deploy an IPv6- Enabled VPN Infrastructure”

ICB “To carry out an experimental deployment of an IPv6-Enabled VPN Infrastructure upon which one can experiment on the sort of policies that coalition networks require”

10/11 July 2003VPN Workshop7 UCL IPv6 VPN Deployment Requirements IPv6-Enabled IPv6-Enabled VPN Management VPN Management Security Infrastructure Security Infrastructure Policy Infrastructure Policy Infrastructure Non-Fully Meshed Topology Non-Fully Meshed Topology Failure Tolerant Failure Tolerant Deployable Over Multiple Platforms Deployable Over Multiple Platforms

10/11 July 2003VPN Workshop8 Future Requirements Topology Topology  Flexible  Dynamic Routing Routing  Dynamic  Secure Multicast Multicast QoS QoS

10/11 July 2003VPN Workshop9 Building An Ideal System Each system excels in its particular area of focus Each system excels in its particular area of focus  X-Bone – Overlay Hierarchy, Topology  DVC – Distributed, Localised Control  UMU-PBNM – Security Infrastructure Want the best of all worlds Want the best of all worlds

10/11 July 2003VPN Workshop10 Ideal System – Existing Features Localisation and Security of DVC Localisation and Security of DVC Distributed Nature of DVC Distributed Nature of DVC Wide Deployability of DVC/X-Bone Wide Deployability of DVC/X-Bone Hierarchic Nature of X-Bone Hierarchic Nature of X-Bone Topological Flexibility of X-Bone/UMU Topological Flexibility of X-Bone/UMU Policy Management of UMU Policy Management of UMU Security Management of UMU Security Management of UMU

10/11 July 2003VPN Workshop11 Ideal System – New Features Dynamic Topology Dynamic Topology Secure (Non-Decrypted) Routing over VPN Secure (Non-Decrypted) Routing over VPN Multicast Capability Multicast Capability QoS Provision QoS Provision

10/11 July 2003VPN Workshop12 Issues Definition of a “VPN” Definition of a “VPN” Scope – Edge vs. Node Scope – Edge vs. Node VPN Management System VPN Management System  Central / Coalition / Combination  Dynamic Tunnel Establishment  Tunnel Management  Minimised Overheads

10/11 July 2003VPN Workshop13 Issues (cont.) Security Security  Authentication  PKI Infrastructure  Certificate Enrolment & Management  Authorisation  Distributed Access Control  Policy Management  Automated Policy Negotiation

10/11 July 2003VPN Workshop14 Issues (cont.) Topology & Routing Topology & Routing  Ability To Choose Topology  Dynamic Topology  Requires Dynamic Routing  Bootstrapping  Secure Routing

Manish Lad Department of Computer Science University College London