Ip Sec - The New Security Standard For The Internet, Intranets, And Virtual Private Networks - Doraswamy Naganand

. .

Résumé :
With IPSec, Internet security comes of age, enabling companies to build VPNs and other Internet-centered mission-critical applications with confidence that their data will remain secure. Now, there's an authoritative, comprehensive guide te, IPSec-straight from two leading authorities in IPSec standardization and implementation. Start by reviewing the fundamentals of computer and network security, and the tradeoffs associated with implementing security at each layer of the IP stack. Next, walk through IPSec's architecture and components. the role of authentication and confidentiality. use of the Authentication Header (AH) and Encapsulating Security Payloads (ESP). and Internet Key Exchange (IKE). * Deploying IPSec security in host-to-host, host-to-gateway, and gateway-to-gateway scenarios * Security associations, SPIs, and other key concepts * Establishing secure VPN tunneling * Overlapping and shared security associations, nested and chained tunnels, and other implementation issues * Practical guidance for setting policy on routers and end-hosts * A detailed look inside the IPSec kernel Finally, preview the future of IPSec, with up-to-the-minute coverage of compression, multicast, mobility, and PKIX-enhancements that will be crucial to large-scale IPSec deployment. Whether you are a networking or Web professional, software developer, or security specialist, you must understand IPSec-and with this book, you will.

Biographie:
NAGANAND DORASWAMY is a senior principal engineer at Nortel Networks in Billerica, MA, and an active participant in the IETF and key industry panels on VPNs and IP security. He was a network security architect at Bay Networks (currently Nortel Networks) and is currently working on next-generation router architectures and protocols. He was the technical lead for IP Security at FTP Software. DAN HARKINS is a Senior Scientist at Network Alchemy, developing secure protocols for high-performance and fault-tolerant routers. He was formerly a software engineer at Cisco Systems in the Network Protocol Security Croup. He wrote IPSec's standard Internet Key Exchange (IKE) key management protocol. He is an active member in several IETF Working Groups and served on the U.S. Commerce Department's Technical Advisory Committee to Develop the Federal Governments Key Management Infrastructure.

Sommaire:
["OVERVIEW","Cryptographic history and techniques","TCP\/IP OVERVIEW","IP security overview","Detailed analysis","IPSec architecture","The encapsulating security payload (esp)","The authentication header (ah)","The internet key exchange","DEPLOYMENT ISSUES","Policy","IPSec implementation","IP security in action","IPSec futures."]