Apply Tier Form Security Arachitecture to Intranet

Abstract

In this paper, we propose the Inter-Torsion Mechanism in Tier-Form Architecture (ITMTFA) and apply this architecture to the Intranet to provide a security environment for message transmission in the Intranet or between Intranets. As we know that the firewall is used in the Intranet to be as the traffic filter of the incoming message and as the proxy server of the members in the Intranet. But the firewall suffers from the attackers who may be the members in the Intraner, or the outer attackers who are logging on the nodes in the Intranet. In ITMTFA, the firewall is used to be as the agent of the members in the Intranet also, it supports the one time key security environment to the members who are communicating with other nodes which may be in or out the Intranet. This is the reason why the scheme is called as Tier-Form. The one-time key will be changed by a transformation scheme called as Function Torsion (FT) which is performed in the agent (firewall) after the key is used. FT is processed by a randomly logic operation on the old session key and randomly permuting on the result to form the new session key. Based on the advantage of one time key and random function FT, the ITMTFA can provide a very high security environment in the Intranet or between Intranets.