![Page 1: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/1.jpg)
IPSec VPNon a Android Phone
Group 1
Avinash BhashyamAxel Christiansen
![Page 2: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/2.jpg)
Group Project Description
• Internet Protocol Security (IPsec) is a framework of open standards for ensuring private communication over the virtual public network.
• The goal of the project is to Use IPsec to create a Virtual Private Network(VPN) on a Android phone.
![Page 3: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/3.jpg)
Tasks allocation
• Avinash Bhashyam– Research (50%)– Programing (75%)– Report (25%)
• Axel Christiansen– Research (50%)– Programing (25%)– Report (75%)
![Page 4: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/4.jpg)
Technical Details• Confidentiality is provided by using Ipsec encryption
over a VPN Network. • Integrity checking is to be provided by using the
HMAC-MD5.• Authentication is provided by the pre-shared keys
and Digital Signatures.• Reply protection and the access control are to
provide by periodically changing the pre-shared keys. The key exchange can be performed using the IKE-v2 protocol.
![Page 5: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/5.jpg)
Technical Details (Cont.)• The VPN can be setup in the following manner:
– Android Phone to Android Phone– This where the Calling Android Phone is the control
for the VPN.• Software,: StrongSwan 4.5, Linux, Android 2.0
Emulator and Android SDK,.– C compiler.
• Hardware : Basic Computer with network conative and Android Phone.
![Page 6: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/6.jpg)
IKEv2 Peer-to-Peer NAT-Traversal for IPsec Over VPN
MediationConnection
Direct ESP Tunnel using NAT-Traversal
Ref: Andreas Steffen, 27.10.2009,
LinuxKongress2009.ppt
Mediation ClientMediation Client
Mediated Connection
IKEv2
IKEv2IKEv2
MediationConnection
MediationConnection
Android Smart Phone
Wireless Tower
IKEv2=Internet Key Exchange version 2
![Page 7: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/7.jpg)
End-to-end VPN Usage Scenarios
Ref: Andreas Steffen, 27.10.2009, LinuxKongress2009.ppt 47
Site-to-site and remote-access VPNs
Compute workstation
Computer
VPN Gateway
VPN Gateway
Android smart phone
Wireless tower
Internet cloudWireless server
and VPN gateway
Road WarriorVPN Client
· strongSwan is an Internet Key Exchange daemon needed
to automatically set up IPsec-based VPN connections.
![Page 8: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/8.jpg)
Risks and Benefits
• Novel aspects of this project:• Setting up a IPsec VPN from mobile phones• Risks/challenges:• Processing power of the mobile is much lower than that of
a traditional computer.• Flaws in algorithms,software or configuration setting can
be exploited by attackers• Potential applications & benefits:• Data can be communicated securely over public networks.• Sophisticated Mobile Apps can be developed.
![Page 9: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/9.jpg)
Tasks Accomplished by Now
• Software has been incorporated in to the android phone.
• Demo has been somewhat setup.
![Page 10: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/10.jpg)
Conclusion
• Successful implementation of the project has the potential to led to developing Sophisticated mobile applications.
• Project may lead to a potential public application.
![Page 11: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/11.jpg)
Demo
• A project Demo using Virtual Terminals and VPN gateway.
![Page 12: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/12.jpg)
References
• [1] Xenakis, Christos, Merakos, Merakos (2004) Security and Performance in Wireless and Mobile Networks, Retruner on March 3, 2011 from Computer Communications Volume 27, Issue 17, 1 November 2004, Pages 1693-1708
• [2] Andreas Steffen, 27.10.2009,
LinuxKongress2009.ppt
![Page 13: IPSec VPN on a Android Phone Group 1 Avinash Bhashyam Axel Christiansen](https://reader036.vdocuments.mx/reader036/viewer/2022070410/56649f1b5503460f94c317f4/html5/thumbnails/13.jpg)
End of Slide presentation
Are there any questions about the project ???