Presentation is loading. Please wait.

Presentation is loading. Please wait.

Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing.

Published byMarlene Chandler Modified over 9 years ago

Similar presentations

Presentation on theme: "Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing."— Presentation transcript:

1 Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing

2 Outline Project Goal Brief Project Background Current Network Layout Roadmap of our Project Development Summary Challenges Faced CSE591: Virtualization and Cloud Computing

3 Project Goal Provide users of Android devices with several reliable options for accessing a cloud via a VPN connection. CSE591: Virtualization and Cloud Computing

4 Technical Background There are several different protocols users may wish to use. PPTP With encryption Without encryption L2TP Plain IPSec PSK IPSec CRT SSL CSE591: Virtualization and Cloud Computing

5 SSL Secure Socket Layer (SSL): Encrypt everything above the Transport Layer. Uses certificates for authentication Always uses the strongest encryption that both the server and client support. CSE591: Virtualization and Cloud Computing

6 Roadmap of Project By midterm: Set up, document, and test all possible server and protocol combinations with the native Android client. (Completed) Place a web server inside our VPN. (Completed) By final: Have L2TP IPSec with Certificates working (Completed) Set up an SSL VPN Server (with OpenVPN) (Completed) Set up an SSL VPN client for Android (Completed) Website/Program for Registration (Completed) Documentation of how we did what we did (Completed) If time permits: Set up the native client to automatically reconnect when the connection is lost. (80% Completed) CSE591: Virtualization and Cloud Computing

7 Native Android Client We have successfully set up the native Android VPN client to work with the following configurations: Linux using L2TP Linux using L2TP IPSec PSK Linux using L2TP IPSec CRT Windows using PPTP with no encryption Windows using PPTP with encryption Windows using L2TP Windows using L2TP IPSec PSK CSE591: Virtualization and Cloud Computing

8 Native Android Client For each of the configurations we have documented the steps we took to set up the VPN Servers and the VPN clients on the Android device. This allows others to easily reproduce and expand on our work. This documentation now includes screenshots to assist future users with the set up process. CSE591: Virtualization and Cloud Computing

9 OpenVPN Server The native Windows VPN Server does not support SSL VPN connections. To support SSL, we installed the OpenVPN Server on the Windows server. The OpenVPN also provides the means for creating the certificates used by the clients. CSE591: Virtualization and Cloud Computing

10 OpenVPN Client The native Android VPN client also does not support SSL VPN connections. To provide SSL VPN functionality, we installed the OpenVPN client on to the Android and configured it to work with the OpenVPN Server. Our documentation was updated to include how to set up the OpenVPN Server on the Windows server and the OpenVPN client on the Android. CSE591: Virtualization and Cloud Computing

11 Network Layout & Infrastructure Server/ Client Linux Server Ubuntu Server 10.10 Windows Server 2003 L2TPL2TP CRT L2TP PSK SSL VPN PPTP w/Enc PPTP No Enc L2TPL2TP CRT L2TP PSK SSL VPN Native Android Client 3 rd Party Android CSE591: Virtualization and Cloud Computing We also installed a web-based SSL VPN (Adito) on a Windows server. However, it did not work with Android because the client agent needs a Java Run-time machine which Android lacks.

12 MobiCloud VPN There are a few shortcomings of the native Android VPN client. Because of this, we have developed a new interface for configuring and managing new, existing, and/or active VPN connections. CSE591: Virtualization and Cloud Computing It provides: Easier access for creating VPN connections Easier management of VPN connections Automatic reconnect functionality Provides users with an easy method for registering

13 MobiCloud VPN The registration window allows users to conveniently register with the VPN Server. Immediately after registering users are able to access the VPN using the information they provided. CSE591: Virtualization and Cloud Computing

14 Challenges Faced Setting up Linux VPN Servers Limited Documentation Personal solutions provided online Compatibility issues Setting up the OpenVPN server and client Very little documentation Documentation became outdated for each major update to the Android operating system. Little documentation for (safely) rooting the phone and gaining access to the Droid file system. CSE591: Virtualization and Cloud Computing

15 Challenges Faced Developing the new Android interface The VPN APIs are not made publicly available or documented. Required us to go through source code and use unofficial Android Java classes No documentation provided No comments in the code Had to read through all of the code and understand what it is doing and how it is doing it CSE591: Virtualization and Cloud Computing

16 Demo CSE591: Virtualization and Cloud Computing

17 Questions? CSE591: Virtualization and Cloud Computing

Download ppt "Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206) 217-7048

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.

Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.

Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.
A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.

A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.
Remote Networking Architectures

Remote Networking Architectures
Norman Online Backup All your files Always available.

Norman Online Backup All your files Always available.
Copyright 2005-2010 Kenneth M. Chipps Ph.D. www.chipps.com 1 VPN Last Update 2010.11.29 1.3.0.

Copyright Kenneth M. Chipps Ph.D. 1 VPN Last Update
Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.

Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.
SSL From Your Smartphone Support for Android Smartphones www.sharetech.com.twwww.sharetech.com.tw / www.higuard.comwww.higuard.com.

SSL From Your Smartphone Support for Android Smartphones /
MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.

MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.

1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.
Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.

Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 7: Securing Site-to-Site Connectivity Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 7: Securing Site-to-Site Connectivity Connecting Networks.
Virtual Private Networks Alberto Pace. IT/IS Technical Meeting – January 2002 What is a VPN ? u A technology that allows to send confidential data securely.

Virtual Private Networks Alberto Pace. IT/IS Technical Meeting – January 2002 What is a VPN ? u A technology that allows to send confidential data securely.

Similar presentations

Ads by Google