corporate intranet security packet-level protocols for preventing leakage of sensitive information and assuring authorized network traffic公司内部网安全包级别协议防止敏感信息的泄漏和保证授权的网络流量.pdfVIP

Int. J. Communications, Network and System Sciences, 2012, 5, 245-252 / 10.4236/ijcns.2012.55033 Published Online May 2012 (http://www.SciRP.org/journal/ijcns) Corporate Intranet Security: Packet-Level Protocols for Preventing Leakage of Sensitive Information and Assuring Authorized Network Traffic Boris S. Verkhovsky, Roberto D. Rubino New Jersey Institute of Technology, University Heights, Newark, USA Email: {verb, rr8}@ Received March 23, 2012; revised April 20, 2012; accepted May 7, 2012 ABSTRACT Securing large corporate communication networks has become an increasingly difficult task. Sensitive information rou- tinely leaves the company network boundaries and falls into the hands of unauthorized users. New techniques are re- quired in order to classify packets based on user identity in addition to the traditional source and destination host ad- dresses. This paper introduces Gaussian cryptographic techniques and protocols to assist network administrators in the complex task of identifying the originators of data packets on a network and more easily policing their behavior. The paper provides numerical examples that illustrate certain basic ideas. Keywords: Corporate Security; Authorized Traffic; Data Leakage; Cryptographic Token; Authentication; Trusted Authorities; Toom-Cook Algorithm 1. Introduction packets with a TOS or DSCP [1] value to indicate service discrimination on the network. By augmenting each IP Modern Internet Protocol (IP) networks deployed within packet with an additional header, the IPSEC authen