Problem solve Get help with specific problems with your technologies, process and projects.

Encryption stronger than DES/3DES

For VPN connections that use L2TP over IPSec is there any stronger encryption that can be used (or required) other than DES / 3DES encryption?
There are new encryption algorithms being developed, but 3DES is probably sufficient for you now, especially if you change the session keys regularly (e.g., every few hours or so).

The more critical component of security is authentication. It's surprising how many folks will encrypt using 3DES but still use shared secrets or PAP for authentication. I recommend either secure tokens or digital certificates. Authentication and encryption go hand-in-hand to provide the best security.

This was last published in February 2003

Dig Deeper on Network Security Best Practices and Products

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.