Authenticated Transversal

In this paper we introduce a way to preserve end-to-end confidentiality while authenticating transversal of network elements with as many intervening review points as needed. Our technique associates the public-key-based authorization of a TCP connection request to a TLS connection. We show that this technique provides simpler setup and per-packet header overheads than other common techniques. We describe experiments that show its practicality and efficiency using an implementation based on Apache/OpenSSL and communication across FreeBSD firewalls and routers.