Virtual private networks: an overview with performance evaluation

Authors:
S. Khanvilkar;A. Khokhar
Affiliations:
Illinois Univ., Chicago, IL, USA;-
Venue:
IEEE Communications Magazine
Year:
2004

Citing 0
Cited 8

Security and privacy system architecture for an e-hospital environment

Proceedings of the 7th symposium on Identity and trust on the Internet
Open Source Mobile VPNs over Converged All-IP Networks

Journal of Network and Systems Management
Verifying security properties of internet protocol stacks: The split verification approach

Journal of Systems Architecture: the EUROMICRO Journal
A clustering and traffic-redistribution scheme for high-performance IPsec VPNs

HiPC'05 Proceedings of the 12th international conference on High Performance Computing
Towards a scalable and flexible architecture for virtual private networks

ICN'05 Proceedings of the 4th international conference on Networking - Volume Part II
Asymmetrical SSL tunnel based VPN

ISPA'06 Proceedings of the 4th international conference on Parallel and Distributed Processing and Applications
GESEQ: a generic security and QoS model for traffic priorization over IPSec site to site virtual private networks

NEW2AN'07 Proceedings of the 7th international conference on Next Generation Teletraffic and Wired/Wireless Advanced Networking
How (not) to build a transport layer for anonymity overlays

ACM SIGMETRICS Performance Evaluation Review

Quantified Score

Hi-index	0.25

Visualization

Abstract

Virtual private networks have gained immense popularity among commercial and defense organizations because of their capability to provide secure connectivity at lower costs. Several commercial and open source VPN products are now available that can be configured to provide VPN services with varying characteristics. This article studies some of the most popular open-source Linux-based VPN solutions (OSLVs) and compares them with respect to network performance (measured in terms of overhead, bandwidth utilization, and latency/jitter), features and functionalities (e.g., algorithm plugins and routing), and operational concerns (defined by security and scalability). Our experiments suggest that there is no single OSLV solution that excels in all considered aspects, and a combination of different VPN products and/or trade-off among desired characteristics may be required to deliver optimal performance. Our experiments also suggest that on an average, OSLVs using UDP-based tunnels have 50 percent lower overhead, 80 percent higher bandwidth utilization, and 40-60 percent lower latency/jitter than those using TCP.