Great Circle Associates Firewalls
(May 1994) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: NATs
From: lear @ yeager . corp . sgi . com (Eliot Lear)
Date: Mon, 2 May 1994 15:04:31 -0700
To: "Robert G. Moskowitz" <0003858921 @ mcimail . com>, Eric Fleischman <ericf @ atc . boeing . com>, brian <brian @ dxcoms . cern . ch>, ipv4 ale <ipv4-ale @ ftp . com>, big internet <big-internet @ munnari . oz . au>, firewalls <firewalls @ GreatCircle . COM>
In-reply-to: "Robert G. Moskowitz" <0003858921 @ mcimail . com> "Re: NATs" (Apr 29, 5:39am)
References: <40940429103904/0003858921NA3EM @ mcimail . com> 
I think it's important to stress that network level security is in
some sense orthoganol to application layer security.  Used today,
network layer security provides end to end privacy to the network
code.  It does you no good to have that privacy if the hosts on
either end leak like sieves.

On the other hand, if you're looking for a secure pipe, where you
have secure ends on both sides, network layer security is just fine,
regardless of the applications on either side.

-- 
Eliot Lear
[lear @
 sgi .
 com]
Follow-Ups:
  • Re: NATs
    From: Michael Endrizzi <endrizzi @ phantasm . sctc . com>
References:
  • Re: NATs
    From: "Robert G. Moskowitz" <0003858921 @ mcimail . com>
Indexed By Date Previous: mail handling
From: lacoursj @ uprc . com (Jeffrey D. LaCoursiere)
Next: Re: Network Management Proxies and Firewalls
From: lazear @ dockside . mitre . org
Indexed By Thread Previous: Re: NATs
From: "Robert G. Moskowitz" <0003858921 @ mcimail . com>
Next: Re: NATs
From: Michael Endrizzi <endrizzi @ phantasm . sctc . com>
Google
 
Search Internet Search www.greatcircle.com