The VPN (Virtual Private Network) technique becomes more and more popular to protect contents of messages and to achieve secure communication from incidents, such as tapping. However, it grow in usage that a VPN server is used on a sub-network in part of an office-wide network. But, a PPTP system included in Windows operating systems cannot establish nested VPN links. Moreover encrypted communication by VPN hides a user of the VPN connection. Consequently, any administrators of network systems can’t find out the users of the VPN connection via firewall, moreover can’t decide whether if the user is legal or not. In order to solve this problem, we developed a multi step PPTP relay system on a firewall. This system solves all the problems of our previously developed PPTP relay system(1). The new relay system improves security by encrypting through the whole end-to-end communication and abolishing of prior registration of passwords for the next step. Furthermore, transport speed is accelerated, and the restriction of the number of steps on relay is also abolished. By these features the multi step PPTP relay system expands usability.
[1]
Stephen T. Kent,et al.
IP Authentication Header
,
1995,
RFC.
[2]
Stephen T. Kent,et al.
Security Architecture for the Internet Protocol
,
1998,
RFC.
[3]
Glen Zorn,et al.
Point-to-Point Tunneling Protocol
,
1999
.
[4]
Dino Farinacci,et al.
Generic Routing Encapsulation (GRE)
,
2000,
RFC.
[5]
Glen Zorn,et al.
Microsoft Point-To-Point Encryption (MPPE) Protocol
,
2001,
RFC.
[6]
Randall J. Atkinson,et al.
IP Encapsulating Security Payload (ESP)
,
1995,
RFC.