Using QKD in MACsec for secure Ethernet networks
Abstract Media access control security (MACsec) is an IEEE 802.1AE standard for secure communication on Ethernet links. MACsec ensures the confidentiality, integrity and origin authenticity of Ethernet frames. The secrecy of MACsec stems from a root key that is either configured as a pre‐shared key...
Guardado en:
| Autores principales: | , |
|---|---|
| Formato: | article |
| Lenguaje: | EN |
| Publicado: |
Wiley
2021
|
| Materias: | |
| Acceso en línea: | https://doaj.org/article/aa787e70b39345788fd4d80072067bc9 |
| Etiquetas: |
Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
|
| id |
oai:doaj.org-article:aa787e70b39345788fd4d80072067bc9 |
|---|---|
| record_format |
dspace |
| spelling |
oai:doaj.org-article:aa787e70b39345788fd4d80072067bc92021-11-22T16:30:52ZUsing QKD in MACsec for secure Ethernet networks2632-892510.1049/qtc2.12006https://doaj.org/article/aa787e70b39345788fd4d80072067bc92021-09-01T00:00:00Zhttps://doi.org/10.1049/qtc2.12006https://doaj.org/toc/2632-8925Abstract Media access control security (MACsec) is an IEEE 802.1AE standard for secure communication on Ethernet links. MACsec ensures the confidentiality, integrity and origin authenticity of Ethernet frames. The secrecy of MACsec stems from a root key that is either configured as a pre‐shared key or derived from a mutual authentication protocol. However, both methods are not ideal because such a root key may be disclosed due to human errors or broken by quantum attacks. Here, the authors investigate the quantum key distribution (QKD) as an alternative source of trust for MACsec. QKD can be used as either a root key provider or a session key generator. The authors develop a new key exchange protocol based on QKD for Ethernet networks. Furthermore, it is verified by the experiment that QKD could be well integrated into MACsec without performance degradation.Joo Yeon ChoAndrew SergeevWileyarticleTelecommunicationTK5101-6720ENIET Quantum Communication, Vol 2, Iss 3, Pp 66-73 (2021) |
| institution |
DOAJ |
| collection |
DOAJ |
| language |
EN |
| topic |
Telecommunication TK5101-6720 |
| spellingShingle |
Telecommunication TK5101-6720 Joo Yeon Cho Andrew Sergeev Using QKD in MACsec for secure Ethernet networks |
| description |
Abstract Media access control security (MACsec) is an IEEE 802.1AE standard for secure communication on Ethernet links. MACsec ensures the confidentiality, integrity and origin authenticity of Ethernet frames. The secrecy of MACsec stems from a root key that is either configured as a pre‐shared key or derived from a mutual authentication protocol. However, both methods are not ideal because such a root key may be disclosed due to human errors or broken by quantum attacks. Here, the authors investigate the quantum key distribution (QKD) as an alternative source of trust for MACsec. QKD can be used as either a root key provider or a session key generator. The authors develop a new key exchange protocol based on QKD for Ethernet networks. Furthermore, it is verified by the experiment that QKD could be well integrated into MACsec without performance degradation. |
| format |
article |
| author |
Joo Yeon Cho Andrew Sergeev |
| author_facet |
Joo Yeon Cho Andrew Sergeev |
| author_sort |
Joo Yeon Cho |
| title |
Using QKD in MACsec for secure Ethernet networks |
| title_short |
Using QKD in MACsec for secure Ethernet networks |
| title_full |
Using QKD in MACsec for secure Ethernet networks |
| title_fullStr |
Using QKD in MACsec for secure Ethernet networks |
| title_full_unstemmed |
Using QKD in MACsec for secure Ethernet networks |
| title_sort |
using qkd in macsec for secure ethernet networks |
| publisher |
Wiley |
| publishDate |
2021 |
| url |
https://doaj.org/article/aa787e70b39345788fd4d80072067bc9 |
| work_keys_str_mv |
AT jooyeoncho usingqkdinmacsecforsecureethernetnetworks AT andrewsergeev usingqkdinmacsecforsecureethernetnetworks |
| _version_ |
1718417515562926080 |