关键字:网络层;Linux内核;端到端;加密;模块;网络通信The Implementation of Encryption and Decryption at Net Layer based on Linux
Abstract
With the abroad use of network technology in various trades, network security is becoming an important issue. Linux is an excellent Open-source Operating System and is very suitable for the test of some new technology. In this paper, the network protocol stack of the Linux operating system kernel is changed to encrypt network communication data. Firstly, introduces the development and actuality of the network data encryption. Secondly, analyses the inernet protocol, the DES encryption algorithm, and the implementation of internet protocol and the socket structure in the linux kernel. Whereafter, realizes the DES algorithm, changes the kernel, and adds some functional kernel modules. And then, an IP end-to-end encryption system is designed and implemented, and it is embeded in the linux kernel, we can achieve its function through kernel module. Lastly, a test is given to testify the correctness of the design.
Key Words: Net layer; Linux kernel; End-to-end; Encrypt; Module; Network communications