Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Dynamic VPN Architecture for Private Cloud Computing

Published byCaroline Norton Modified over 9 years ago

Similar presentations

Presentation on theme: "A Dynamic VPN Architecture for Private Cloud Computing"— Presentation transcript:

1 A Dynamic VPN Architecture for Private Cloud Computing
2011 Fourth IEEE International Conference on Utility and Cloud Computing Wen-Hwa Liao, Shuo-Chun Su Tatung University

2 Virtual Private Network(VPN)
A virtual private network extends a private network across a public network, such as the Internet. Technical Tunneling Encryption & Decryption Key management Authentication

3 VPN Framework (Full-Mesh)
Every node is connected directly to others. Advantage Shortest route No bottleneck Disadvantage Each gateway(GW) must have an Internet key exchange(IKE) policy for each of the other GWs Can not traffic control Internet Gateway VPN tunnel

4 VPN Framework (Hub-and-Spoke)
Every GWs connects to Hub-GW. Advantage Each GW needs only one IKE policy to communicate with all other GWs. Traffic control Disadvantage Delay bottleneck Internet Gateway VPN tunnel Hub-GW

5 VPN Framework (Bipartite)
Based on hub-and-spoke and full-mesh The corporation and the cloud service provider can be deemed as spokes under the network management of hub-GW.

6 System Architecture CE:Customer Edge PE:Provider Edge

7 Packet Format Connection between CE and PE

8 Exchange modes CE_VLAN_request CE_VLAN_response CE_MAC_request
Establishing VLAN CE_VLAN_response VLAN ID CE_MAC_request Querying about permission for connection CE_MAC_response Checking in the database whether the connection is permitted CE_MAC_terminate Delete the VLAN ID for connecting

9 Process of adding a new connection

10 Process of erasing a connection

11 Analysis Result

12 Conclusion The user needs only to connect hub-GW by using VPN like PPTP, IPsec or SSL without having to implement a complex network framework. The management of hub-GW uses bipartite. Needing to maintain extra table.

Download ppt "A Dynamic VPN Architecture for Private Cloud Computing"

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.

Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
VPN: Virtual Private Network Presented by: Germaine Bacon Lizzi Beduya Betty Huang Jun Mitsuoka Juliet Polintan.

VPN: Virtual Private Network Presented by: Germaine Bacon Lizzi Beduya Betty Huang Jun Mitsuoka Juliet Polintan.
Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206) 217-7048

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.

Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.

Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.
Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.

Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.
SCSC 455 Computer Security Virtual Private Network (VPN)

SCSC 455 Computer Security Virtual Private Network (VPN)
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.

A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Similar presentations

Ads by Google