Greg Brennan <brenngp @
onto .
network .
com> writes in
> Date: Tue, 30 May 95 11:21:00 CDT
> Subject: Re: Would you trust a virtual private network?
> ...
> Check out the W3 server at http://www.network.com for complete details.
So I did. Looks like a fine set of products...
Does anyone have an opinion on that or experience with the products?
Brent, they refer to your article "Network (In)Security via Packet Filters". They claim their products don't have those shortcomings. What is your side of the story?
In looking at products I differentiate between:
- (external) links to public networks (Internet...)
--> Top security needed. Must maintain a secure link even if under frequent attack. Extensive log review utilities needed. Optional (sometimes forced) application level encryption needed.
- external private links to other companies
--> High security needed. Both directions. Violation of rules can be handled immediately. Log review is less complex. More flexibility (protocols) needed compared to Internet link. Often encryption needed (often only Point-to-Point encryption).
- internal (private) links between different parts of the company
--> Security needed. Violations can be easily handled. High speed connections. Modest need for log review. Very flexible (low level?) links needed. Encryption will be handled on the application level.
Any comments?
---------------------------------------------------------------------
drs. Paul van Mossel | Phone: +31 50 852238 Fax: +31 50 852240
PTT Telecom BV, I&AT | E-mail : P .
vanMossel @
telecom .
ptt .
nl
P.O. Box 188 | DISCLAIMER: This statement is not an official
NL-9700 AD Groningen | statement from, nor does it represent an,
The Netherlands | official position of, PTT Telecom B.V.
---------------------------------------------------------------------
X400 address: /c=NL/admd=400NET/prmd=PTT Telecom/s=van Mossel/I=P
|
|
