METHOD AND SYSTEM FOR DETERMINING SECURITY POLICY AMONG IPSEC VPN DEVICES

• Main Author: CHOI, HONG MIN
• Format: Patent
• Language: English; Korean
• Published: 09.07.2013
• Subjects: ELECTRIC COMMUNICATION TECHNIQUE; ELECTRICITY; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION

PURPOSE: A method and a system for determining a security policy among IPSec VPN devices are provided to improve the efficiency and security of security policy management for tunneling among the IPSec VPN devices. CONSTITUTION: A second VPN device requests a security policy to be used in encrypted communication to a first VPN device (210). The first VPN device determines the security policy to be applied to communication with the second VPN device in response to the request of the second VPN device (220). The first VPN device transmits the determined security policy to the second VPN device (230). The first VPN device and the second VPN device generate an encryption algorithm and an encryption key to be implemented for the encrypted communication through internet key exchange based on the security policy (240). The first VPN device and the second VPN device perform the encrypted communication by coding or decoding a network packet based on the generated encryption algorithm and the encryption key. [Reference numerals] (210) Request a security policy; (220) Determine the security policy; (230) Transmit the security policy; (240) Generate an encryption algorithm and an encryption key; (250) Encrypted communication; (AA) First VPN device; (BB) Second VPN device