Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
Apple tops the $100B+ tech club
Microsoft details Windows 8 for ARM devices
Blogger exposes major Google Wallet security flaw
Web app lets enterprise set security, sharing for Google Apps users
Cloudscaling to offer OpenStack private cloud platform
Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
Microsoft details 'Windows on ARM' program
March debut of 'iPad 3' a sure bet, says analyst
Resume Makeover: How an Information Security Professional Can Target CSO Jobs
FBI unbolts Steve Jobs 1991 investigation file
Cisco boosted profit, sales in Q2 while cutting costs
Macs take on the enterprise
Four crazy tech ideas from Google's Solve for X project
/

SSL-based remote access to hit the big time

Related linksToday's breaking news
Send to a friendFeedback

Sign up to receive this and other networking newsletters in your inbox.

By Tim Greene
Network World VPN Newsletter, 08/05/02

Check Point's entry into the Secure Sockets Layer-based remote access market signals a key point in the VPN world.

Until now, Check Point, one of the top vendors of firewalls and IPSec VPN software, was focused only on IPSec. It has its own client with a sophisticated management platform for setting policies and pushing updates, addressing well one of the key gripes about remote access VPNs. Distributing, managing and maintaining all the clients in a large deployment is a lot of work.

The addition of SSL lifts some of that burden. By using the SSL capabilities of browsers, Check Point eliminates the need altogether of keeping track of the clients. Any PC with the ability to handle any type of remote access already has the browser. Administrators have to do nothing to all those remote machines to take advantage of SSL remote access.

There is a tradeoff. Not all SSL-based remote access gear can handle client-server applications. They require that the applications themselves are already Web-enabled. So if you want to take advantage of this technology, you may have to be willing to accept limits.

Most users that have jumped on the SSL remote access technology say this limitation is not crippling. Many if not most remote access users are just tapping in to collect their e-mail and don't really need all the additional resources that an IPSec VPN would enable. So for them, a zero-maintenance remote access client is welcome.

For businesses with some users who need the expanded capabilities of an IPSec VPN, many businesses are running SSL and IPSec remote access networks in tandem. The strain of running the SSL network is light enough to make the two networks worthwhile.

Since the SSL alternative is already viewed as a supplement to IPSec, it makes sense that Check Point would add SSL support to its gateway platform. It is a good enough idea that it will likely be picked up by other IPSec VPN vendors.

Those vendors that focus solely on SSL remote access have more sophisticated products than Check Point's by virtue of their longer history in the field, so you may want to consider that before jumping with both feet into Check Point's offering. But if you hadn't considered SSL remote access at all, you should regard Check Point's entry into the area as a mark that the technology is going to stick around at least to fill a specific niche.

RELATED LINKS

SSL gets respect from IPSec vendors
Network World, 07/29/02

Tim Greene is a senior editor at Network World, covering virtual private networking gear, remote access, core switching and local phone companies. You can reach him at tgreene@nww.com.

Network World VPNs archive
Past newsletters.


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.