MURAL - Maynooth University Research Archive Library



    A proxy-based security architecture for Internet applications in an extranet environment


    Dowling, Andy and Keating, John (2001) A proxy-based security architecture for Internet applications in an extranet environment. Journal of Systems and Software, 58 (20). pp. 107-118. ISSN 0164-1212

    [img]
    Preview
    Download (278kB) | Preview


    Share your research

    Twitter Facebook LinkedIn GooglePlus Email more...



    Add this article to your Mendeley library


    Abstract

    Current Internet communications security is typically provided by the integration of secure transport functionality into client and server software. Two problems arise with this approach: Firstly, the use of integrated security services requires modification to the existing Internet applications, requiring re-development and re-deployment projects. Secondly, high-level security services such as authorisation are not provided by secure transport protocols, requiring applications to rely on customised (and often insecure) mechanisms for the provision of such services. We propose a platform-independent system that uses proxy applications to provide both secure transport and authorisation services transparently to existing Internet applications. We demonstrate that our approach requires no modification to existing applications, and that our security services are based on existing and widely used technologies. We discuss the merits of our architecture in the context of the intended deployment environment: an Internet-based heterogeneous private network such as an extranet or Virtual Private Network (VPN). We show that our approach achieves its goals at the expense of introducing a minor degree of performance loss into overall client–server communications, yet we maintain that this performance loss is a minor expense in relation to the advantages of the system as a whole.

    Item Type: Article
    Keywords: Internet; Extranet; VPN; Security; Proxy; Authorisation;
    Academic Unit: Faculty of Science and Engineering > Computer Science
    Item ID: 8667
    Identification Number: https://doi.org/10.1016/S0164-1212(01)00031-0
    Depositing User: Dr. John Keating
    Date Deposited: 23 Aug 2017 15:08
    Journal or Publication Title: Journal of Systems and Software
    Publisher: Elsevier
    Refereed: Yes
    URI:
    Use Licence: This item is available under a Creative Commons Attribution Non Commercial Share Alike Licence (CC BY-NC-SA). Details of this licence are available here

    Repository Staff Only(login required)

    View Item Item control page

    Downloads

    Downloads per month over past year

    Origin of downloads