LAN security

Problems and solutions for Ethernet networks

Rinat Khoussainov, Ahmed Patel

Research output: Contribution to journalArticle

11 Citations (Scopus)

Abstract

Despite many research and development efforts in the area of data communications security, the importance of internal local area network (LAN) security is still underestimated. This paper discusses why many traditional approaches to network security (e.g. firewalls, the modern IPSec or various application level protocols) are not so effective in local networks and proposes a prospective solution for building of secure encrypted Ethernet LANs. The architecture presented allows for employment of the existing office network infrastructure, does not require changes to workstations' software, and provides high level of protection. The core idea is to apply security measures in the network interface devices connecting individual computers to the network (i.e. network interface cards (NICs)). This eliminates the physical possibility of sending unprotected information through the network. Implementation details are given for data and key exchange, network management, and interoperability issues. An in-depth security analysis of the proposed architecture is presented and some conclusions are drawn.

Original languageEnglish
Pages (from-to)191-202
Number of pages12
JournalComputer Standards and Interfaces
Volume22
Issue number3
Publication statusPublished - 1 Aug 2000
Externally publishedYes

Fingerprint

Network security
Ethernet
Local area networks
Interfaces (computer)
Network management
Computer networks
Interoperability
Network protocols
workstation
research and development
communications
infrastructure
Secure communication

Keywords

  • Architecture
  • Encryption
  • Ethernet
  • Lan security
  • Public key cryptography

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Software
  • Information Systems and Management

Cite this

LAN security : Problems and solutions for Ethernet networks. / Khoussainov, Rinat; Patel, Ahmed.

In: Computer Standards and Interfaces, Vol. 22, No. 3, 01.08.2000, p. 191-202.

Research output: Contribution to journalArticle

Khoussainov, R & Patel, A 2000, 'LAN security: Problems and solutions for Ethernet networks', Computer Standards and Interfaces, vol. 22, no. 3, pp. 191-202.
Khoussainov, Rinat ; Patel, Ahmed. / LAN security : Problems and solutions for Ethernet networks. In: Computer Standards and Interfaces. 2000 ; Vol. 22, No. 3. pp. 191-202.
@article{b936397947bd46ba9ecdd1f13276b00e,
title = "LAN security: Problems and solutions for Ethernet networks",
abstract = "Despite many research and development efforts in the area of data communications security, the importance of internal local area network (LAN) security is still underestimated. This paper discusses why many traditional approaches to network security (e.g. firewalls, the modern IPSec or various application level protocols) are not so effective in local networks and proposes a prospective solution for building of secure encrypted Ethernet LANs. The architecture presented allows for employment of the existing office network infrastructure, does not require changes to workstations' software, and provides high level of protection. The core idea is to apply security measures in the network interface devices connecting individual computers to the network (i.e. network interface cards (NICs)). This eliminates the physical possibility of sending unprotected information through the network. Implementation details are given for data and key exchange, network management, and interoperability issues. An in-depth security analysis of the proposed architecture is presented and some conclusions are drawn.",
keywords = "Architecture, Encryption, Ethernet, Lan security, Public key cryptography",
author = "Rinat Khoussainov and Ahmed Patel",
year = "2000",
month = "8",
day = "1",
language = "English",
volume = "22",
pages = "191--202",
journal = "Computer Standards and Interfaces",
issn = "0920-5489",
publisher = "Elsevier",
number = "3",

}

TY - JOUR

T1 - LAN security

T2 - Problems and solutions for Ethernet networks

AU - Khoussainov, Rinat

AU - Patel, Ahmed

PY - 2000/8/1

Y1 - 2000/8/1

N2 - Despite many research and development efforts in the area of data communications security, the importance of internal local area network (LAN) security is still underestimated. This paper discusses why many traditional approaches to network security (e.g. firewalls, the modern IPSec or various application level protocols) are not so effective in local networks and proposes a prospective solution for building of secure encrypted Ethernet LANs. The architecture presented allows for employment of the existing office network infrastructure, does not require changes to workstations' software, and provides high level of protection. The core idea is to apply security measures in the network interface devices connecting individual computers to the network (i.e. network interface cards (NICs)). This eliminates the physical possibility of sending unprotected information through the network. Implementation details are given for data and key exchange, network management, and interoperability issues. An in-depth security analysis of the proposed architecture is presented and some conclusions are drawn.

AB - Despite many research and development efforts in the area of data communications security, the importance of internal local area network (LAN) security is still underestimated. This paper discusses why many traditional approaches to network security (e.g. firewalls, the modern IPSec or various application level protocols) are not so effective in local networks and proposes a prospective solution for building of secure encrypted Ethernet LANs. The architecture presented allows for employment of the existing office network infrastructure, does not require changes to workstations' software, and provides high level of protection. The core idea is to apply security measures in the network interface devices connecting individual computers to the network (i.e. network interface cards (NICs)). This eliminates the physical possibility of sending unprotected information through the network. Implementation details are given for data and key exchange, network management, and interoperability issues. An in-depth security analysis of the proposed architecture is presented and some conclusions are drawn.

KW - Architecture

KW - Encryption

KW - Ethernet

KW - Lan security

KW - Public key cryptography

UR - http://www.scopus.com/inward/record.url?scp=0347308459&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0347308459&partnerID=8YFLogxK

M3 - Article

VL - 22

SP - 191

EP - 202

JO - Computer Standards and Interfaces

JF - Computer Standards and Interfaces

SN - 0920-5489

IS - 3

ER -