Encryption Card Application of Embedded Hardware Firewall Based on IPsec VPN
|School||Shandong University of Science and Technology|
|Course||Circuits and Systems|
|Keywords||IPsec VPN Encryption card Embedded system design Device driver Internet key exchange|
As the development of the network technology and computer technology, the network is becoming more and more popular, along with the security problem of network concerned by most people. And the processing speed of current network firewall products increasingly cannot satisfy the network’s needs. The emergence of such hardware encryption card, make the calculation task the software processed replace by hardware completed. It improves the performance of firewall products.This paper mainly in selecting safety products represented the hardware firewall products, and they are implemented in IPsec VPN network topology which is most widely used today. In such environment, we study the performance parameters of hardware encryption card in IPsec VPN to test its feasibility and application efficiency.In view of this purpose in the text, the principle, contents, realization, and implementation of the environment which IPsec VPN related are first introduced. And the concept of protocol related will be involved in chapter. Then introduces the content of IKE, through it can negotiate IPsec SA, which is used in the process of IPsec.This paper also describes the methods and procedures of the IPsec VPN in the network security products with the hardware encryption card to improve product throughout. In Article, it also describes the current hardware encryption card and it’s general hardware components framework, and all parts of capabilities. Combined with the characteristics of product safety IPsec VPN, tells the main processing flow IPsec packet processes, including input and output process.On this basis, along with the development of the embedded technology based on embedded processor core, the network security products become more and more popular.combined with hardware encryption card and the IPsec processing suit points, the hardware encryption card driver development’s main content and functionality are also described.Summarizes the hardware encryption card driver, summarizes the main content of the hardware encryption system involving thought, encryption card driver framework and its realization process of the main data structure involved. Through the hardware encryption card and the way IPsec parallel processing, make encryption card in the firewall by CPU to share the original calculation of the content of the factors influencing the handle.Hardware encryption card with the application of IPsec VPN,enabling software and hardware encryption and decryption can be the perfect switch, improved product’s performance and quality.