NYC*BUG Meetings and EventsFeeds: [RSS]
OpenBSD IPsec stack, Angelos Keromytis
(Audio generously recorded and processed by Nikolai Fetissov)
A presentation will be made on the OpenBSD IPsec stack and the related subsystems that make it work (or not). These include the mbuf tags, the Cryptographic Framework, and the isakmpd key-management daemon. We will begin with a brief introduction of IPsec from a 30,000 ft. view, and proceed to the various IPsec components in the OpenBSD kernel.For those interested to do some background reading, see: ipsec.pdf, ipsecspeed.pdf, ocf.pdf, tmipsec-tissec.pdf, mbuf_tags.pdf. Also, here are the slides.About the speaker:
Angelos Keromytis is an Assistant Professor of Computer Science at Columbia University. He received his Masters and PhD from the University of Pennsylvania, and his Bachelors (all in Computer Science) from the University of Crete, in Greece. His research interests include network and system survivability, authorization and access control, and large-scale systems security. In a previous life, he had enough time to contribute code to the OpenBSD project. His increasingly outdated home page can be found here.