IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks - Hardcover

Über die Autorin bzw. den Autor

Naganand Doraswamy is senior principal engineer at Nortel Networks in Billerica, MA., and an active participant in key industry panels on VPNs and IP security. He was formerly network security architect at Bay Networks, and technical lead for IP Security at FTP Software.

Dan Harkins is a senior software engineer in the Network Protocol Security Group at Cisco Systems, and active in several IETF working groups. He wrote IPsec's standard Internet Key Exchange (IKE) key management protocol.

Von der hinteren Coverseite

1189H-4

“The IPSec protocol suite is perhaps the most important mechanism for securing the future Internet, and is bound to become an inseparable part of the Internet protocol. This book is essential reading and a great reference for anyone who wants to use IPSec or to understand how it works. Clearly and fluently written, it provides the reader with an overall view and rationale, together with the necessary hands-on details. This is most definitely the right book at the right time!” ―Ran Canetti, Staff Member, IBM Research

The insider's guide to IPSec for every networking professional―not just security specialists!

With IPSec, Internet security comes of age, enabling companies to build VPNs and other Internet-centered mission-critical applications with confidence that their data will remain secure. Now, there's an authoritative, comprehensive guide to IPSec―straight from two leading authorities in IPSec standardization and implementation.

Start by reviewing the fundamentals of computer and network security, and the tradeoffs associated with implementing security at each layer of the IP stack. Next, walk through IPSec's architecture and components; the role of authentication, encryption, encapsulating security payloads (ESPs); and Internet Key Exchange (IKE). Coverage includes:

• Using IPSec security in host-to-host, host-to-gateway, and gateway-to-gateway scenarios
• Security associations, SPIs, and other key concepts
• Establishing secure VPN tunneling
• Overlapping and shared security associations, nested and chained tunnels, and other implementation issues
• Practical guidance for setting policy on routers and end-hosts
• A detailed look inside the IPSec kernel

Finally, preview the future of IPSec, with up-to-the-minute coverage of compression, multicast, mobility, and PKIX―enhancements that will be crucial to large-scale IPSec deployment. Whether you are a networking or Web professional, software developer, or security specialist, you must understand IPSec―and with this book, you will.