Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme

Shie Yuan Wang; Yu Hsun Yuan

doi:10.1109/HPSR54439.2022.9831376

Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme

Shie Yuan Wang, Yu Hsun Yuan^*

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Nowadays, attacks coming from the Internet are posing serious threats to the hosts in an institution, campus, company, etc. The Network Address Translator (NAT) is a device that allows a host in a private network to interact with the hosts on the public Internet. Due to the property of NAT, unless a host that is behind a NAT actively contacts a host on the Internet, hosts on the Internet cannot actively reach the host behind the NAT. In this work, we exploit NATs and propose a multi-level hierarchical NAT scheme to protect and enhance the security of a private network. We have designed and implemented our scheme over P4 programmable hardware switches. Experimental results show that our scheme functions correctly and provides high throughput, low latency, and high stability. In addition, according to our tests, our scheme works correctly with most existing network applications.

Original language	English
Title of host publication	2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022
Publisher	IEEE Computer Society
Pages	157-162
Number of pages	6
ISBN (Electronic)	9781665406079
DOIs	https://doi.org/10.1109/HPSR54439.2022.9831376
State	Published - 2022
Event	23rd IEEE International Conference on High Performance Switching and Routing, HPSR 2022 - Taicang, Jiangsu, China Duration: 6 Jun 2022 → 8 Jun 2022

Publication series

Name	IEEE International Conference on High Performance Switching and Routing, HPSR
Volume	2022-June
ISSN (Print)	2325-5595
ISSN (Electronic)	2325-5609

Conference

Conference	23rd IEEE International Conference on High Performance Switching and Routing, HPSR 2022
Country/Territory	China
City	Taicang, Jiangsu
Period	6/06/22 → 8/06/22

Keywords

NAT
Network security
P4

Access to Document

10.1109/HPSR54439.2022.9831376

Cite this

Wang, S. Y., & Yuan, Y. H. (2022). Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme. In 2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022 (pp. 157-162). (IEEE International Conference on High Performance Switching and Routing, HPSR; Vol. 2022-June). IEEE Computer Society. https://doi.org/10.1109/HPSR54439.2022.9831376

@inproceedings{f5b409e56db24c6db9a6f7c94d322c70,

title = "Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme",

abstract = "Nowadays, attacks coming from the Internet are posing serious threats to the hosts in an institution, campus, company, etc. The Network Address Translator (NAT) is a device that allows a host in a private network to interact with the hosts on the public Internet. Due to the property of NAT, unless a host that is behind a NAT actively contacts a host on the Internet, hosts on the Internet cannot actively reach the host behind the NAT. In this work, we exploit NATs and propose a multi-level hierarchical NAT scheme to protect and enhance the security of a private network. We have designed and implemented our scheme over P4 programmable hardware switches. Experimental results show that our scheme functions correctly and provides high throughput, low latency, and high stability. In addition, according to our tests, our scheme works correctly with most existing network applications.",

keywords = "NAT, Network security, P4",

author = "Wang, {Shie Yuan} and Yuan, {Yu Hsun}",

note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 23rd IEEE International Conference on High Performance Switching and Routing, HPSR 2022 ; Conference date: 06-06-2022 Through 08-06-2022",

year = "2022",

doi = "10.1109/HPSR54439.2022.9831376",

language = "English",

series = "IEEE International Conference on High Performance Switching and Routing, HPSR",

publisher = "IEEE Computer Society",

pages = "157--162",

booktitle = "2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022",

address = "美國",

}

Wang, SY & Yuan, YH 2022, Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme. in 2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022. IEEE International Conference on High Performance Switching and Routing, HPSR, vol. 2022-June, IEEE Computer Society, pp. 157-162, 23rd IEEE International Conference on High Performance Switching and Routing, HPSR 2022, Taicang, Jiangsu, China, 6/06/22. https://doi.org/10.1109/HPSR54439.2022.9831376

Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme. / Wang, Shie Yuan; Yuan, Yu Hsun.
2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022. IEEE Computer Society, 2022. p. 157-162 (IEEE International Conference on High Performance Switching and Routing, HPSR; Vol. 2022-June).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme

AU - Wang, Shie Yuan

AU - Yuan, Yu Hsun

PY - 2022

Y1 - 2022

N2 - Nowadays, attacks coming from the Internet are posing serious threats to the hosts in an institution, campus, company, etc. The Network Address Translator (NAT) is a device that allows a host in a private network to interact with the hosts on the public Internet. Due to the property of NAT, unless a host that is behind a NAT actively contacts a host on the Internet, hosts on the Internet cannot actively reach the host behind the NAT. In this work, we exploit NATs and propose a multi-level hierarchical NAT scheme to protect and enhance the security of a private network. We have designed and implemented our scheme over P4 programmable hardware switches. Experimental results show that our scheme functions correctly and provides high throughput, low latency, and high stability. In addition, according to our tests, our scheme works correctly with most existing network applications.

AB - Nowadays, attacks coming from the Internet are posing serious threats to the hosts in an institution, campus, company, etc. The Network Address Translator (NAT) is a device that allows a host in a private network to interact with the hosts on the public Internet. Due to the property of NAT, unless a host that is behind a NAT actively contacts a host on the Internet, hosts on the Internet cannot actively reach the host behind the NAT. In this work, we exploit NATs and propose a multi-level hierarchical NAT scheme to protect and enhance the security of a private network. We have designed and implemented our scheme over P4 programmable hardware switches. Experimental results show that our scheme functions correctly and provides high throughput, low latency, and high stability. In addition, according to our tests, our scheme works correctly with most existing network applications.

KW - NAT

KW - Network security

KW - P4

UR - http://www.scopus.com/inward/record.url?scp=85135825704&partnerID=8YFLogxK

U2 - 10.1109/HPSR54439.2022.9831376

DO - 10.1109/HPSR54439.2022.9831376

M3 - Conference contribution

AN - SCOPUS:85135825704

T3 - IEEE International Conference on High Performance Switching and Routing, HPSR

SP - 157

EP - 162

BT - 2022 IEEE 23rd International Conference on High Performance Switching and Routing, HPSR 2022

PB - IEEE Computer Society

T2 - 23rd IEEE International Conference on High Performance Switching and Routing, HPSR 2022

Y2 - 6 June 2022 through 8 June 2022

ER -

Enhancing the Security of a Private Network by Using A Multi-level Hierarchical NAT Scheme

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this