| … | |
… | |
| 5 | =head1 DESCRIPTION |
5 | =head1 DESCRIPTION |
| 6 | |
6 | |
| 7 | GVPE is a suite designed to provide a virtual private network for multiple |
7 | GVPE is a suite designed to provide a virtual private network for multiple |
| 8 | nodes over an untrusted network. |
8 | nodes over an untrusted network. |
| 9 | |
9 | |
|
|
10 | =over 4 |
|
|
11 | |
|
|
12 | =item X<Virtual> |
|
|
13 | |
| 10 | "Virtual"X<Virtual> means that no physical network is created (of course), but an |
14 | Virtual means that no physical network is created (of course), but an |
| 11 | ethernet is emulated by creating multiple tunnels between the member |
15 | ethernet is emulated by creating multiple tunnels between the member |
| 12 | nodes. |
16 | nodes. |
| 13 | |
17 | |
|
|
18 | =item X<Private> |
|
|
19 | |
| 14 | "Private"X<Private> means that non-participating nodes cannot decode ("sniff)" nor |
20 | Private means that non-participating nodes cannot decode ("sniff)" nor |
| 15 | inject ("spoof") packets. |
21 | inject ("spoof") packets. |
| 16 | |
22 | |
| 17 | In the case of gvpe, even participating nodes cannot sniff packets send to |
23 | In the case of gvpe, even participating nodes cannot sniff packets send to |
| 18 | other nodes or spoof packets as if sent from other nodes. |
24 | other nodes or spoof packets as if sent from other nodes. |
| 19 | |
25 | |
|
|
26 | =item X<Network> |
|
|
27 | |
| 20 | "Network"X<Network> means that more than two parties can participate in the |
28 | Network means that more than two parties can participate in the network, |
| 21 | network, so for instance it's possible to connect multiple branches of a |
29 | so for instance it's possible to connect multiple branches of a company |
| 22 | company into a single network. Many so-called "vpn" solutions only create |
30 | into a single network. Many so-called "vpn" solutions only create |
| 23 | point-to-point tunnels. |
31 | point-to-point tunnels. |
|
|
32 | |
|
|
33 | =back |
| 24 | |
34 | |
| 25 | =head2 DESIGN GOALS |
35 | =head2 DESIGN GOALS |
| 26 | |
36 | |
| 27 | =over 4 |
37 | =over 4 |
| 28 | |
38 | |
| … | |
… | |
| 92 | |
102 | |
| 93 | ./configure --enable-hmac-length=16 --enable-rand-length=8 --enable-digest=sha1 |
103 | ./configure --enable-hmac-length=16 --enable-rand-length=8 --enable-digest=sha1 |
| 94 | |
104 | |
| 95 | This uses a 16 byte HMAC checksum to authenticate packets (I guess 8-12 |
105 | This uses a 16 byte HMAC checksum to authenticate packets (I guess 8-12 |
| 96 | would also be pretty secure ;) and will additionally prefix each packet |
106 | would also be pretty secure ;) and will additionally prefix each packet |
| 97 | with 8 bytes of random data. |
107 | with 8 bytes of random data. In the long run, people should move to |
|
|
108 | SHA-224 and beyond, but support in openssl is missing as of writing this |
|
|
109 | document. |
| 98 | |
110 | |
| 99 | In general, remember that AES-128 seems to be more secure and faster than |
111 | In general, remember that AES-128 seems to be more secure and faster than |
| 100 | AES-192 or AES-256, more randomness helps against sniffing and a longer |
112 | AES-192 or AES-256, more randomness helps against sniffing and a longer |
| 101 | HMAC helps against spoofing. MD4 is a fast digest, SHA1 or RIPEMD160 are |
113 | HMAC helps against spoofing. MD4 is a fast digest, SHA1 or RIPEMD160 are |
| 102 | better, and Blowfish is a fast cipher (and also quite secure). |
114 | better, and Blowfish is a fast cipher (and also quite secure). |
