Check out the new USENIX Web site. next up previous
Next: About this document ... Up: Transparent Network Security Policy Previous: Disclaimer

References

1
S. M. Bellovin.
Distributed Firewalls.
;login: magazine, special issue on security, November 1999.

2
Consultation Committee.
X.509: The Directory Authentication Framework.
International Telephone and Telegraph, International Telecommunications Union, Geneva, 1989.

3
D. Eastlake and C. Kaufman.
Dynamic Name Service and Security.
Internet RFC 2065, January 1997.

4
Niklas Hallqvist and Angelos D. Keromytis.
Implementing Internet Key Exchange (IKE).
In Proceedings of the Annual USENIX Technical Conference, June 2000.

5
D. Harkins and D. Carrel.
The internet key exchange (IKE).
Request for Comments (Proposed Standard) 2409, Internet Engineering Task Force, November 1998.

6
P. Karn and W. Simpson.
Photuris: Session-key management protocol.
Request for Comments (Experimental) 2522, Internet Engineering Task Force, March 1999.

7
S. Kent and R. Atkinson.
IP authentication header.
Request for Comments (Proposed Standard) 2402, Internet Engineering Task Force, November 1998.

8
S. Kent and R. Atkinson.
IP encapsulating security payload (ESP).
Request for Comments (Proposed Standard) 2406, Internet Engineering Task Force, November 1998.

9
S. Kent and R. Atkinson.
Security architecture for the internet protocol.
Request for Comments (Proposed Standard) 2401, Internet Engineering Task Force, November 1998.

10
A. D. Keromytis, J. Ioannidis, and J. M. Smith.
Implementing IPsec.
In Proceedings of Global Internet (GlobeCom) '97, pages 1948 - 1952, November 1997.

11
Kirk McKusick, et. al.
The Design and Implementation of the 4.4BSD Operation System.
Addison Wesley, 1996.

12
RSA Laboratories.
PKCS #1: RSA Encryption Standard, version 1.5 edition, 1993.
November.

13
Steven McCanne and Van Jacobson.
A BSD packet filter: A new architecture for user-level packet capture.
In Proceedings of USENIX Winter Technical Conference, pages 259-269, San Diego, California, January 1993. Usenix.

14
D. McDonald, C. Metz, and B. Phan.
PF_KEY Key Management API, Version 2.
Request for Comments (Informational) 2367, Internet Engineering Task Force, July 1998.

15
Digital Signature Standard, May 1994.

16
Internetworking Task Group of IEEE 802.1.
Information technology - telecommunication and information exchange between systems - local and metropolitan area networks - common specifications - part 3: Media access control (mac) bridges.
Technical Report ISO/IEC Final DIS 15802-3, IEEE P802.1D/D17, LAN MAN Standards Committee of the IEEE Computer Society, May 1998.

Angelos D. Keromytis
4/21/2000