2006 USENIX Annual Technical Conference Abstract
Pp. 329340 of the Proceedings
Resilient Connections for SSH and TLS
Teemu Koponen, Helsinki Institute for Information Technology; Pasi Eronen, Nokia Research Center; Mikko Särelä, Helsinki University of Technology
Abstract
Disconnection of an SSH shell or a secure application session due to network
outages or travel is a familiar problem to many Internet users today. In this paper,
we extend the SSH and TLS protocols to support resilient connections that
can span several sequential TCP connections. The extensions allow sessions to
survive both changes in IP addresses and long periods of disconnection. Our design
emphasizes deployability in real-world environments, and addresses many of
the challenges identified in previous work, including assumptions made about network
middleboxes such as firewalls and NATs. We have also implemented the
extensions in the OpenSSH and PureTLS software packages and tested them in
practice.
- View the full text of this paper in HTML and PDF. Listen to the presentation in MP3 format.
Until June 2007, you will need your USENIX membership identification in order to access the full papers. The Proceedings are published as a collective work, © 2006 by the USENIX Association. All Rights Reserved. Rights to individual papers remain with the author or the author's employer. Permission is granted for the noncommercial reproduction of the complete work for educational or research purposes. USENIX acknowledges all trademarks within this paper.
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
|