Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
Apple tops the $100B+ tech club
How to get the IRS' attention: Forge nearly $8 million in tax returns, steal identities
How the Phoenix Suns basketball team takes on social media attacks
Microsoft details Windows 8 for ARM devices
Blogger exposes major Google Wallet security flaw
Web app lets enterprise set security, sharing for Google Apps users
Cloudscaling to offer OpenStack private cloud platform
Macs take on the enterprise
Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
Microsoft details 'Windows on ARM' program
March debut of 'iPad 3' a sure bet, says analyst
Resume Makeover: How an Information Security Professional Can Target CSO Jobs
FBI unbolts Steve Jobs 1991 investigation file
/

IPSec vs. SSL VPNs

Related linksToday's breaking news
Send to a friendFeedback

Sign up to receive this and other networking newsletters in your inbox.

By Steve Taylor and Joanie Wexler
Network World Wide Area Networking Newsletter, 09/25/02

VPN discussions often center around the differences between services based on Multi-protocol Label Switching and IP Security technologies, with IPSec generally the de facto choice for encrypting VPN sessions over a public network. But there are cases where Secure Sockets Layer provides an attractive alternative to IPSec.

From a 30,000-foot view, IPSec and SSL provide the same function. Both supply a method for secure (encrypted) communications between a remote user and a host system using the public Internet for transport. And both can be used in this manner to support remote and mobile workers.

The key difference between them is where the secure clients run. In an IPSec network, a secure pathway is set up between the user and the host server. This approach allows access to all IP-based applications that would otherwise be available to users if they were connected directly. Though somewhat complex, this setup provides a high level of flexibility.

SSL, on the other hand, is a browser-based implementation. As such, the primary applications are limited to Web-enabled applications, file sharing and e-mail. And these applications must be specifically SSL-enabled. Nevertheless, for many enterprises, these might well be the only applications requiring remote access.

In deciding when to use SSL and when to use IPSec, it quickly becomes apparent that there is no universally " best " solution; there are many factors to be considered. These include not only the applications supported (as mentioned above), but also user accessibility, ease of administration and use, scalability, performance and total cost of ownership.

For a more complete discussion of this topic, check out the white paper by VPN service provider OpenReach at:

www.webtorials.com/main/resource/papers/openreach/paper1.htm (registration required).

RELATED LINKS

SSL-based remote access to hit the big time
Network World VPN Newsletter, 08/05/02

SSL gets respect from IPSec vendors
Network World, 07/29/02

Steven Taylor, consultant and broadband packet evangelist, and Joanie Wexler, an independent networking technology editor and writer, team up to bring you this analysis and commentary. Taylor specializes in education and market analysis, and Wexler adds incisive reporting and research. For more detailed information on most of the topics discussed in this newsletter, connect to www.webtorials.com, the first Web site dedicated exclusively to market studies and technology tutorials in the Broadband Packet areas of Frame Relay, ATM, and IP.

Feedback and additional topic ideas are welcome. Please contact taylor@webtorials.com or joanie@jwexler.com.

Frame Relay archive
Past newsletters.


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.