Aviso: para depositar documentos, por favor, inicia sesión e identifícate con tu cuenta de correo institucional de la UCM con el botón MI CUENTA UCM. No emplees la opción AUTENTICACIÓN CON CONTRASEÑA
 

Wireless and fiber-based post-quantum-cryptography-secured IPsec tunnel

dc.contributor.authorLawo, Daniel Christian
dc.contributor.authorAbu Bakar, Rana
dc.contributor.authorCano Aguilera, Abraham
dc.contributor.authorCugini, Filippo
dc.contributor.authorImaña Pascual, José Luis
dc.contributor.authorTafur Monroy, Idelfonso
dc.contributor.authorVegas Olmos, Juan José
dc.date.accessioned2024-12-11T16:26:13Z
dc.date.available2024-12-11T16:26:13Z
dc.date.issued2024-08-21
dc.descriptionQUARK project-Marie Skłodowska-Curie Actions with grant number 101073355 CLEVER-KDTJU-Grant agreement ID: 101097560
dc.description.abstractIn the near future, commercially accessible quantum computers are anticipated to revolutionize the world as we know it. These advanced machines are predicted to render traditional cryptographic security measures, deeply ingrained in contemporary communication, obsolete. While symmetric cryptography methods like AES can withstand quantum assaults if key sizes are doubled compared to current standards, asymmetric cryptographic techniques, such as RSA, are vulnerable to compromise. Consequently, there is a pressing need to transition towards post-quantum cryptography (PQC) principles in order to safeguard our privacy effectively. A challenge is to include PQC into existing protocols and thus into the existing communication structure. In this work, we report on the first experimental IPsec tunnel secured by the PQC algorithms Falcon, Dilithium, and Kyber. We deploy our IPsec tunnel in two scenarios. The first scenario represents a high-performance data center environment where many machines are interconnected via high-speed networks. We achieve an IPsec tunnel with an AES-256 GCM encrypted east–west throughput of 100 Gbit/s line rate. The second scenario shows an IPsec tunnel between a wireless NVIDIA Jetson and the cloud that achieves a 0.486 Gbit/s AES-256 GCM encrypted north–south throughput. This case represents a mobile device that communicates securely with applications running in the cloud.
dc.description.departmentDepto. de Arquitectura de Computadores y Automática
dc.description.facultyFac. de Ciencias Físicas
dc.description.refereedTRUE
dc.description.sponsorshipEuropean Commission
dc.description.statuspub
dc.identifier.citationLawo, D.C.; Abu Bakar, R.; Cano Aguilera, A.; Cugini, F.; Imaña, J.L.; Tafur Monroy, I.; Vegas Olmos, J.J. Wireless and Fiber-Based Post-Quantum-Cryptography-Secured IPsec Tunnel. Future Internet 2024, 16, 300. https://doi.org/10.3390/fi16080300
dc.identifier.doi10.3390/fi16080300
dc.identifier.essn1999-5903
dc.identifier.officialurlhttps://doi.org/10.3390/fi16080300
dc.identifier.relatedurlhttps://www.mdpi.com/1999-5903/16/8/300
dc.identifier.urihttps://hdl.handle.net/20.500.14352/112467
dc.issue.number300
dc.journal.titleFuture Internet
dc.language.isoeng
dc.page.final22
dc.page.initial1
dc.publisherMDPI
dc.rightsAttribution 4.0 Internationalen
dc.rights.accessRightsopen access
dc.rights.urihttp://creativecommons.org/licenses/by/4.0/
dc.subject.cdu004
dc.subject.keywordPost-quantum cryptography
dc.subject.keywordFalcon
dc.subject.keywordDilithium
dc.subject.keywordKyber
dc.subject.keywordData processing unit
dc.subject.keywordData center
dc.subject.keywordIPsec
dc.subject.ucmInformática (Informática)
dc.subject.unesco3304 Tecnología de Los Ordenadores
dc.titleWireless and fiber-based post-quantum-cryptography-secured IPsec tunnel
dc.typejournal article
dc.type.hasVersionVoR
dc.volume.number16 (8)
dspace.entity.typePublication

Download

Original bundle

Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
futureinternet-16-00300.pdf
Size:
1.83 MB
Format:
Adobe Portable Document Format

Collections