论文标题
MACSEC的安全有效隧道用于现代工业用例
Secure and Efficient Tunneling of MACsec for Modern Industrial Use Cases
论文作者
论文摘要
诸如工业4.0之类的趋势将为未来的工业网络带来新的挑战。更大的互连,较高的数据量以及对速度和安全性的新要求将使新方法变得必要。将要求性能优化的网络技术以安全的方式实施新的用例,例如网络分离和隔离。 MacSec是一种新的且高效的协议,这将是至关重要的。这是一个第2层加密协议,以前是针对工业环境专门扩展的。但是,它缺乏桥接本地网络的能力。因此,在这项工作中,我们为MACSEC提出了一个安全有效的第3层隧道方案。我们设计并实施了两种方法,这些方法同样安全且优于相当的最新技术。
Trends like Industry 4.0 will pose new challenges for future industrial networks. Greater interconnectedness, higher data volumes as well as new requirements for speeds as well as security will make new approaches necessary. Performanceoptimized networking techniques will be demanded to implement new use cases, like network separation and isolation, in a secure fashion. A new and highly efficient protocol, that will be vital for that purpose, is MACsec. It is a Layer 2 encryption protocol that was previously extended specifically for industrial environments. Yet, it lacks the ability to bridge local networks. Therefore, in this work, we propose a secure and efficient Layer 3 tunneling scheme for MACsec. We design and implement two approaches, that are equally secure and considerably outperform comparable state-of-the-art techniques.
