Commit 73eaae93 authored by Nouri Alnahawi's avatar Nouri Alnahawi
Browse files

restructure sec protocols

parent 6937aa9e
Pipeline #80302 passed with stages
in 2 minutes and 44 seconds
......@@ -5,47 +5,56 @@ draft: false
weight: 2
layout: no_index
---
An overview of the existing communication and security protocols that make use of cryptographic systems and cipher suites, and their current state of PQC integration. The classification is based on the OSI model.
An overview of the existing security standards that make use of cryptographic systems and cipher suites, and their current state of PQC integration.
##### Data Link (Layer 2)
- [MACsec]({{< ref "/macsec" >}} "MACsec")
- PPP CHAP/PAP
- [WPA/EAP]({{< ref "/wlan" >}} "WPA/EAP")
|Security Protocol|Description|Type|Usage|OSI-Layer|
|-----------------|-----------|----|-----|---------|
|**Data Link Layer**|
|[MACsec]({{< ref "/macsec" >}} "MACsec")|Media Access Control Security|Key Agreement|Ethernet|2|
|[CHAP]({{< ref "/pap" >}} "CHAP")|Challenge-Handshake Authentication Protocol|Authentication|PPP (Point-to-Ponit)|2|
|[PAP]({{< ref "/pap" >}} "PAP")|Password Authentication Protocol|Authentication|PPP (Point-to-Ponit)|2|
|**Network Layer**|
|[AH]({{< ref "/ipsec" >}} "AH")|Authentication Header|Authentication|IPsec|3-4|
|[ESP]({{< ref "/ipsec" >}} "ESP")|Encapsulating Security Payload|Authentication and Encryption|IPsec|3-4|
|[IKEv2]({{< ref "/ipsec" >}} "IKEv2")|Internet Key Exchange|Authentication and Key Exchange|IPsec|3-4|
|**Transport Layer**|
|[TLS/SSL]({{< ref "/tls" >}} "TLS/SSL")|Transport Layer Security/Secure Sockets Layer|Authentication, Key Exchange, and Encryption|TCP|4-7|
|[DTLS]({{< ref "/dtls" >}} "DTLS")|Datagram Transport Layer Security|Authentication, Key Exchange, and Encryption|UDP|4|
|[SRTP/ZRTP]({{< ref "/rtp" >}} "SRTP/ZRTP")|(Secure) Real-Time Transport Protocol|Authentication, Key Agreement, and Encryption|RTP|4-7|
|**Application Layer**|
|[SSH]({{< ref "/ssh" >}} "SSH")|Secure Shell Protocol|Authentication and Encryption|-|7|
|[OpenVPN]({{< ref "/vpn" >}} "OpenVPN")|Open Virtual Private Network|Authentication and Encryption|VPN|2-7|
|[WireGuard]({{< ref "/vpn" >}} "WireGuard")|WireGuard Virtual Private Network|Authentication and Encryption|VPN|2-7|
|[DNSSEC]({{< ref "/dnssec" >}} "DNSSEC")|Domain Name System Security Extensions|Authentication, Key Management, and Signing|IP|7|
|[S-MIME/PGP-MIME]({{< ref "/smime" >}} "S-MIME/PGP-MIME")|Secure Multipurpose Internet Mail Extension|Encryption and Signing|E-Mail|7|
|[PGP/GPG]({{< ref "/pgp" >}} "PGP/GPG")|Pretty Good Privacy/GNU Privacy Guard|Encryption and Signing|Several|7|
|[Kerberos/PKINIT]({{< ref "/pkinit" >}} "Kerberos/PKINIT")|Authentication Service|Authentication|Network Communication|7|
|[SSO (OAuth/LDAP/SAML/RADIUS)]({{< ref "/sso" >}} "SSO (OAuth/LDAP/SAML/RADIUS)")|Single Sign-on|Authentication|Network Communication|7|
|[SFTP]({{< ref "/sftp" >}} "SFTP")|SSH File Transfer Protocol|Authentication and Encryption|File Transfer|7|
-----------------------------------------------------------------------------------
##### [Certificates and Cryptographic Standards]({{< ref "/certs" >}} "Certificates and Cryptographic Standards")
- PKCS (Public Key Cryptography Standards)
- X.509
- CMS (Cryptographic Message Syntax)
##### [Blockchain]({{< ref "/dlt" >}} "Blockchain")
- DLTs (Distributed Ledgers)
##### [Wireless Networks]({{< ref "/wlan" >}} "Wireless Networks")
- WPA/IEEE 802.x1/EAP
- UMTTS/LTE/5G
- Bluetooth/IR/ZigBee
- WSN
##### Network (Layer 3)
- [IPsec/IKE]({{< ref "/ike" >}} "IPsec/IKE")
- [VPN]({{< ref "/vpn" >}} "VPN")
- [WireGuard]({{< ref "/wireguard" >}} "WireGuard")
- [DLT]({{< ref "/dlt" >}} "DLT")
- GRE
##### Transport (Layer 4)
- [TLS/SSL]({{< ref "/tls" >}} "TLS/SSL")
- [DTLS]({{< ref "/dtls" >}} "DTLS")
- SRTP/ZRTP
- QUIC
##### [Others]({{< ref "/others" >}} "Others")
- OPC UA (Open Platform Communication Unified Architecture)
- L2TP (Layer 2 Tunneling Protocol)
- SSTP (Secure Socket Tunneling Protocol)
- GRE (Generic Routing Encapsulation)
- QUIC (Quick)
- S-RPC (Secure Remote Procedure Call)
- FinTS/HBCI
- PCT
##### Session (Layer 5)
- [PGP/GPG]({{< ref "/pgp" >}} "PGP/GPG")
##### Application (Layer 7)
- [SSH]({{< ref "/ssh" >}} "SSH")
- [DNSSEC]({{< ref "/dnssec" >}} "DNSSEC")
- [X.509]({{< ref "/certs" >}} "X.509")
- [CMS]({{< ref "/cms" >}} "CMS")
- [S/MIME]({{< ref "/smime" >}} "S/MIME")
- [Kerberos/PKINIT]({{< ref "/pkinit" >}} "Kerberos/PKINIT")
- OAuth
- [OPC UA]({{< ref "/opcua" >}} "OPC UA")
- SFTP
##### Others
- SET
- S-RPC
- FinTS/HBCI
- PKCS
- Telnet
---
title: "X.509"
title: "Certificates and Cryptographic Standards"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 6
weight: 15
---
---
title: "DLT"
title: "Distributed Ledger"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 14
weight: 16
---
......@@ -3,5 +3,5 @@ title: "DNSSEC"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 5
weight: 9
---
......@@ -3,5 +3,5 @@ title: "DTLS"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 7
weight: 5
---
......@@ -3,6 +3,6 @@ title: "MACsec"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 10
weight: 1
---
- [Post-quantum MACsec in Ethernet Networks ](https://journals.riverpublishers.com/index.php/JCSANDM/article/view/5973) Authenticated post-quantum key establishment protocol which is suitable for long-term secure MACsec. Hybrid mode, ephemeral key exchange, and an end-to-end encryption [[ChSe21]](../../../../refs#chse21).
---
title: "CMS"
title: "Others"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 8
weight: 18
---
---
title: "WireGuard"
title: "CHAP/PAP"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 12
weight: 2
---
---
title: "PKINIT"
title: "Kerberos"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 13
weight: 12
---
---
title: "SRTP/ZRTP"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 6
---
---
title: "OPC UA"
title: "SFTP"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
......
......@@ -3,5 +3,5 @@ title: "S/MIME"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 8
weight: 10
---
......@@ -3,5 +3,5 @@ title: "SSH"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 2
weight: 7
---
---
title: "Single Sign-On"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 13
---
......@@ -3,5 +3,5 @@ title: "TLS/SSL"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 1
weight: 4
---
......@@ -3,5 +3,5 @@ title: "VPN"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 4
weight: 8
---
---
title: "WPA/EAP"
title: "Wireless Networks"
date: 2021-05-05T22:41:49+02:00
draft: false
type: docs
weight: 9
weight: 17
---
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment