UVLAN User Manual
This manual describes the installation and use of the UVLAN network switch product. UVLAN is a networking product which has been designed with the goal of joining remote 802.3 networks over a UDP/IP medium. In essence two remote networks using this product simply appear to be local to one another.
This product has been designed with several key features in mind.
Security) Traffic will be secured in three fashions. The UDP packets are encrypted to ensure privacy. This prevents eavesdroppers from snooping on the traffic to read sensitive data. The packets have a message authentication code (MAC) applied to them to ensure authenticity. This prevents attackers from modifying the contents of packets. Finally the system uses monotic increasing counters to prevent replay attacks. The product uses AES-CCM as the cryptographic encrypt+authenticate primitive. AES-CCM is a NIST standard [quote].
Statelessness) The product has been designed with service disruptions in mind. Remote links can be de-activated and re-activate without causing permanent disruption to the product. The product will re-schedule session keys with the remote host and the link will be usable in a matter of a few frames.
Latency) The product uses UDP/IP for the encapsulation to reduce latency of the link as far as possible.
Switching) The product uses switching rules to route packets out to the correct link(s) for a given frame. This lowers the network bandwidth usage. The product learns the routing table on the fly as it sees new frames.
Once installed physically and the configuration has been written the software does not require any further intervention. As far as the network is concerned it is a stateless transparent device. Other machines on the remote side simply “appear” as if they are local.
Get pdf UVLAN User Manual
