Home > Networking Tips > > VPN security: Hiding in plain sight, using network encryption
Networking Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 


VPN security: Hiding in plain sight, using network encryption


Jeff Young, Senior Analyst, Burton Group
07.05.2007
Rating: -3.20- (out of 5)


Network security news, advice and technical information
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


As an analyst, I've received an increasing number of queries from network architects about network encryption, encrypted transport or virtual private network (VPN) security. Maybe that's because of security breaches like the one experienced by TJX, the parent company of TJ Maxx, Marshalls and HomeGoods stores. Millions of credit cards were compromised when a hacker exploited Wi-Fi weaknesses at a Marshalls clothing store near St. Paul, Minnesota.

TJX isn't alone. Some very high-profile breaches of personal information -- including one involving the names of 80% of current active-duty military inside the U.S. government -- have prompted an executive mandate that encryption be used whenever personally identifiable information is in transit or at rest.

I often speak with network engineers on the topic of encryption of data in transit. Here, the first order of business is to describe the various types of encrypted transport VPNs and to suggest that they be considered in order of complexity. The two technologies that are most often used to encrypt information in transit are Secure Sockets Layer (SSL) and IPsec.

Four types of network encryption


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary


>

In the case of a network-to-network VPN, we're talking about encryption from one network device to the next. Because of what we expect today's network equipment to do, some other gotchas might come up in the discussion:

Whatever the motivation, the time is right to explore the technology. Encryption technology is less expensive and more available (the technology is embedded in firewalls, routers and WAN accelerators) than it has ever been. But for most network engineers and architects, the technology requires a different way of thinking: Choose among technologies by considering them in order of complexity; try to minimize the burden on the network and on network users; and so on. By keeping to a few basic principles, you can ensure that encryption will become a very useful -- even vital -- tool for securing your network.

About the author:
Jeff Young is a senior analyst at Burton Group; his emphasis is on network architecture, Internet networks and backbones, and telecommunication service providers. He has 20 years of experience working in IT and the telecommunications industry. Young is a frequent speaker at industry conferences and panels.


Rate this Tip
To rate tips, you must be a member of SearchNetworking.com.
Register now to start rating these tips. Log in if you are already a member.




DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Networking Solutions for Business

Alcatel-Lucent Network Business Communications Solutions
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2000 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts