Ask the Expert

Encryption stronger than DES/3DES

For VPN connections that use L2TP over IPSec is there any stronger encryption that can be used (or required) other than DES / 3DES encryption?

    Requires Free Membership to View

JD,
There are new encryption algorithms being developed, but 3DES is probably sufficient for you now, especially if you change the session keys regularly (e.g., every few hours or so).

The more critical component of security is authentication. It's surprising how many folks will encrypt using 3DES but still use shared secrets or PAP for authentication. I recommend either secure tokens or digital certificates. Authentication and encryption go hand-in-hand to provide the best security.

This was first published in February 2003

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: