| The Global Information Grid (GIG) will leverage Internet Protocol Security (IPsec) tunnel mode Security Associations (SAs) to secure IP traffic. Tunnel mode SAs require the use of an additional IP header per packet, which significantly increases the amount of overhead added to traffic profiles characterized by small packet payloads. This effect is further magnified with the United States Department of Defense (DoD) transition to Internet Protocol version 6 (IPv6), as IPv6 requires twice the packet overhead of Internet Protocol version 4 (IPv4).
Traditional Internet Engineering Task Force (IETF) Header Compression (HC) algorithms, such as IP Header Compression (IPHC), Compressed Real Time Transport Protocol (CRTP), Enhanced Compressed Real Time Transport Protocol (ECRTP), and RObust Header Compression (ROHC), have been developed to help minimize packet overhead on a hop-by-hop basis. If these HC algorithms are extended to operate over IPsec, improvements in network performance and efficiency of IPsec-protected traffic can be attained.
This paper provides an overview of the extensions required to achieve Header Compression over IPsec (HCoIPsec), an emerging protocol currently being defined in the IETF. By integrating the IPsec architecture with HC algorithms, the size of packet headers flowing over IPsec tunnel mode SAs can be reduced, providing efficiency gains in bandwidth- constrained networks. |
| Etzel Brower is a Senior Consultant at Booz Allen Hamilton. He received his M.S. and B.S. degrees from in Electrical and Computer Engineering from Carnegie Mellon University. Currently, he is involved with enhancing network performance in the Global Information Grid (GIG) in the areas of Header Compression and Transport Layer Performance Enhancement.
LaTonya Jeffress is a Consultant at Booz Allen Hamilton. She
received her B.S. in Electrical Engineering from the North Carolina State University. While at Booz Allen, LaTonya has been aiding with IETF efforts by focusing on IPsec and the security services that it provides.
Jonah Pezeshki is a Consultant at Booz Allen Hamilton. He received his B.S. and M.S. degrees in Electrical Engineering from the University of Maryland and is currently working towards his PhD. While at Booz Allen, Jonah has been involved with projects involving the GIG and standardization efforts within the IETF.
Emre Ertekin is a Senior Consultant at Booz Allen Hamilton.
He received two B.S. degrees in Electrical Engineering and Computer Engineering from the Pennsylvania State University. Over the last 3 years, he has been involved with network design of various components of the GIG (e.g., Transformational Satellite, Joint Tactical Radio System), in addition to various standardization efforts within the IETF.
Rohan Jasani is a Senior Consultant at Booz Allen Hamilton. He received an M.S. in Telecommunications from the University of Maryland at College Park and a B.S in Electrical Engineering from the University of Texas at Austin. Currently, his efforts involve enhancing network performance in GIG networks and providing standardization guidance within the IETF for HCoIPsec and TCP Performance Enhancement. |