VPNC Update for December, 2005

Welcome to the latest issue of the VPNC Update. We hope you find the news in this issue valuable.

VPNC Testing News

This month, one member with a new system received both the IPsec Basic Interoperability and IPsec AES Interoperability logos:

NETGEAR, FVG318

This month, one member with a system that had already received its IPsec Basic Interoperability logo received its IPsec AES Interoperability logo:

Jungo Software Technologies, OpenRG

This month, two members with systems that had already received IPsec Basic Interoperability logos retested for that logo based on new firmware:

Jungo Software Technologies, OpenRG (version 4.0.22)
NETGEAR, DG834 family (version 3.01.25)

See the VPNC testing page for full lists of all the VPNC members' products which have proven interoperability.

Recent VPNC Member Press Releases

See the VPNC member list for a complete list of VPNC members.

Caymas
Caymas Systems Introduces The First Guest Access Control Solution

Cisco
Cisco Delivers Over 50,000 Broadband Aggregation Routers for Triple Play Services

CyberGuard
CyberGuard Announces Intelligent Enterprise Security Policy Enforcement Platform

CyberGuard
CyberGuard Raises the Standard for SSL Scanning with Seamless, End-to-End Client Certificate Support

eSoft
eSoft Launches Industry's First Complete Anti-Spyware Solution

eSoft
eSoft ThreatWall Named Finalist in Two Categories for SC Magazine Awards 2006

Intoto
Intoto Now Shipping SSL VPN Software for Small-to-Medium Enterprise Gateway Applications

Jungo
Mindspeed and Jungo Ltd Extend Openmind Third-Party Program With First Scalable Office-on-a-Chip Platform

Jungo
Freescale and Jungo team to deliver PowerQUICC architecture-based residential and business gateways

Juniper
Juniper Networks Delivers Enterprise Infranet Solution

Juniper
Juniper Networks to Acquire Funk Software

NETGEAR
NETGEAR Expands #1 Selling MIMO-G Wireless Product Family with RangeMax All-in-One Gateway

NETGEAR
NETGEAR Spreads Holiday Cheer with Promotions on Home and Business Products Including Popular RangeMax and ProSafe Lines

Nortel
Nortel Secures Wireless Network Expansion, 3G UMTS/HSDPA Trials with Edge Wireless Technology to Boost Network Capacity, Allow for Delivery of Advanced Wireless Broadband

SafeNet
SafeNet Announces Integrated Anti-Virus Solution for Unified Security Appliances

Stonesoft
Lexence N.V. Selects Stonesoft to Improve Overall Network Continuity

Wind River
Wind River Releases Commercial Grade Updates to Its Industry-Leading, Real-Time Device Software Platforms

VPN Standards News

Many VPNC members have asked how the VPN market should respond to the recent news of weaknesses in the collision-resistance of commonly-used hash functions such as MD5 and SHA-1. There has been a great deal of discussion about these discoveries in the cryptographic community, as well as within the security community in the IETF. One of the issues that has been raised often is that security protocols such as IKE/IPsec and SSL/TLS use hashes in many ways, many of which are unrelated to the new weaknesses.

To help clarify where IKE and IPsec use hashes, VPNC's director, Paul Hoffman, has created a new Internet Draft on the topic. The draft, Use of Hash Algorithms in IKE and IPsec, is intended to become an Informational RFC along with the many other similar documents on different security protocols such as SSL/TLS, Kerberos, and so on.

The document lists the many ways in which hash functions are used in IKE and IPsec, and describes whether or not those uses are susceptible to attack given weaker collision-resistance. It also makes recommendations for developers about how they might deal with the weaknesses. The document is sure to undergo revision as it is discussed in the IETF, and may not be finished for many months. During that time, it is expected that more understanding about the collision attacks will emerge from the cryptographic community. Stay tuned to the VPNC Update for more information on the attacks and how they affect the VPN market.

Upcoming VPN-related Events

Interop New York
New York, NY / December 12-15, 2005
This is a smaller version of Interop Las Vegas, which is probably the largest networking show in the world. This conference has a sizable show floor for vendors and a large, fast-paced educational track. Because of the large attendance, many VPN vendors regularly exhibit at Interop.

Next Generation Network Security
Brussels, Belgium / December 12-15, 2005
Telecomm operators have discovered that delivering data and voice together is good but not sufficient for many customers. One of the prime requirements for corporate and governmental use of high-speed networks is security. This conference covers many different aspects of the security market for NGN systems.

RSA Conference 2006
San Jose, California / February 13-17, 2006
The RSA Conference is one of the largest security-specific expositions in the world. It has a very wide educational track and a large exposition floor; many VPNC members exhibit at the show every year. VPNC's director, Paul Hoffman, will lead the panel on "The Future of One-way Hash Functions in the IETF".

About This Mailing List

The VPNC Update is a low-volume, one-way newsletter to inform people about news in the VPN industry. Subscription is open to everyone, members and non-members alike. Previous issues of the newsletter can be found here. If you have questions about the content of VPNC Update, or suggestions or information for future issues, please send them to Paul Hoffman, VPNC's director.

To subscribe to this newsletter, send a message to
   vpnc-update-request@vpnc.org
with the single word
     subscribe
in the body of the message. To unsubscribe, send a message to
   vpnc-update-request@vpnc.org
with the single word
     unsubscribe
in the body of the message.