Virtual Private Ad Hoc Networks

Next-generation network communication

2UGent

Current and future evolution

4G communication networks

Evolution towards a “network of networks”, integrating different technologies (WLAN, UMTS, Ad Hoc…)Characteristics: IP-based, broadband, mobility, heterogeneityConvergence of networking devices and consumer electronics (e.g. cameras, TV…) Public WLAN

Private W

LAN -W

PA

N

IP-based core

InternetConsequences?

3UGent

Consequences and observations

ConsequencesConnectivity anywhere, at any time and from any deviceBigger and bigger (users, devices, services…)

Overwhelming, security risks, management…More and more networked devices supporting people in their daily life

ObservationThese large networks do not meet many of the user’s communication needs

Communication often takes place within a limited context or scope, e.g.Work related communication: projects, customers, students…Personal communication: friends, family…

And thus involves a limited (dynamic, mobile) subset of devices that communicate

In a secure fashionIn a self-organising and easy to manage way

Difficult to setup, configure, maintain and manageE.g. configuration of every separate application, wireless networks…

New communication paradigm needed!

4UGent

New communication paradigm

Trend towards network virtualization:4G IP network = carrier that provides end-to-end connectivityOn top: multiple virtual networks that logically structure the network and its services/resources into small secure communities

Deployment of ad hoc techniquesFormed when needed according to user needs and contextSelf-organizing and self-maintainingDealing with distributed, mobile and dynamic characteristics

= VPAN (Virtual Private Ad Hoc Network)

5UGent

VPAN: definition and network view

DefinitionA secure and self-organizing virtual overlay network of distributed nodes deploying ad hoc network techniques and private addressingSecure: both in terms of networking and applications and services

Phys

ical

net

wor

k

VPAN

: log

ical

net

wor

k

VPAN data

Encrypted and/or

tunneled VPAN data

6UGent

Applications

Multi-user gamesClosed P2P communities

Entertainment

Personal networks: overlay of all your personal devicesHealth care network (e-health)

Personal networking

Cab network, public transport networks, surveillance systems, touristic information, building automation, e-health networks...

Commercial and civilian environments

Virtual classrooms, project collaborationsEducation

Overlay network between collaborating people: within a department, between people at a construction site, monitoring networks, virtual service providersEnterprise networking

Networks with family, friendsSocial networks

Rescue people (police men, fire fighters...) organized in teamsEmergency networks

VPAN members

7UGent

VPAN: future view

8UGent

VPAN: future view

9UGent

VPAN: future view

10UGent

VPAN: future view

11UGent

VPAN: future view

12UGent

VPAN: future view

13UGent

VPAN Gateway

VPAN Gateway

VPAN Gateway

VPAN implementation – components/concepts

Cluster formation• Trust relationship• Secure neighbour discovery• Automatic VPAN IP address assignment• Intra-cluster ad hoc routing• Universal convergence layer

VPAN Cluster 2 = Home Cluster

VPAN Cluster 3 = Office Cluster

VPAN Member

VPAN establishment• Secure registration• Dynamic tunneling (NAT bypassing)• Inter-cluster ad hoc routing• Mobility management• Broadcasting support

Service discovery and service use

Use case: Personal Network

VPAN Cluster 1 = Hotel Cluster

14UGent

Demo - story line