Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
WAN Services /

IPSec vs. SSL VPNs

Related linksToday's breaking news
Send to a friendFeedback

Sign up to receive this and other networking newsletters in your inbox.

By Steve Taylor and Joanie Wexler
Network World Wide Area Networking Newsletter, 09/25/02

VPN discussions often center around the differences between services based on Multi-protocol Label Switching and IP Security technologies, with IPSec generally the de facto choice for encrypting VPN sessions over a public network. But there are cases where Secure Sockets Layer provides an attractive alternative to IPSec.

From a 30,000-foot view, IPSec and SSL provide the same function. Both supply a method for secure (encrypted) communications between a remote user and a host system using the public Internet for transport. And both can be used in this manner to support remote and mobile workers.

The key difference between them is where the secure clients run. In an IPSec network, a secure pathway is set up between the user and the host server. This approach allows access to all IP-based applications that would otherwise be available to users if they were connected directly. Though somewhat complex, this setup provides a high level of flexibility.

SSL, on the other hand, is a browser-based implementation. As such, the primary applications are limited to Web-enabled applications, file sharing and e-mail. And these applications must be specifically SSL-enabled. Nevertheless, for many enterprises, these might well be the only applications requiring remote access.

In deciding when to use SSL and when to use IPSec, it quickly becomes apparent that there is no universally " best " solution; there are many factors to be considered. These include not only the applications supported (as mentioned above), but also user accessibility, ease of administration and use, scalability, performance and total cost of ownership.

For a more complete discussion of this topic, check out the white paper by VPN service provider OpenReach at:

www.webtorials.com/main/resource/papers/openreach/paper1.htm (registration required).

RELATED LINKS

SSL-based remote access to hit the big time
Network World VPN Newsletter, 08/05/02

SSL gets respect from IPSec vendors
Network World, 07/29/02

Steven Taylor, consultant and broadband packet evangelist, and Joanie Wexler, an independent networking technology editor and writer, team up to bring you this analysis and commentary. Taylor specializes in education and market analysis, and Wexler adds incisive reporting and research. For more detailed information on most of the topics discussed in this newsletter, connect to www.webtorials.com, the first Web site dedicated exclusively to market studies and technology tutorials in the Broadband Packet areas of Frame Relay, ATM, and IP.

Feedback and additional topic ideas are welcome. Please contact taylor@webtorials.com or joanie@jwexler.com.

Frame Relay archive
Past newsletters.


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.
* HOME    * RESEARCH CENTERS     * NEWS     * EVENTS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.

Copyright, 1994-2006 Network World, Inc. All rights reserved.