Welcome to the latest issue of the VPNC Update. We hope you find the news in this issue valuable.
This month, VPNC welcomes another new member: Viking InterWorks.
Viking InterWorks introduces the Viking V 2-Gigabit VPN/Firewall Appliance that provides true LAN-speed security for under $6,000. The 1-U appliance's IPsec VPN provides all the standard functionality to support site-to-site and remote access and its stateful-inspection firewall includes DDoS protection. It is complemented by multi-vendor policy and multi-vendor log management software.
This month, VPNC is proud to announce a new logo in its popular series of SSL VPN interoperability tests: SSL Flash. The SSL Flash test assures SSL VPN users that a particular SSL gateway system will work correctly as a front end for a corporate web portal that uses Flash applets that include URLs. This is a specialized version of the SSL Portal logo, which only tests URLs in HTML. Some corporate web sites make use of Flash that includes URLs, such as in navigation menus.
Rewriting URLs in Flash is significantly more difficult than rewriting URLs in HTML. Also, many vendors find that few of their customers require this level of URL rewriting, and therefore have not yet put this feature into their gateway. For these reasons, fewer VPNC members' products have passed this test and received the SSL Flash logo than have passed the tests to qualify for the other SSL VPN logos (Portal, Exchange, Firefox, and JavaScript).
To pass, the SSL gateway must be able to correctly interpret an URL that is in a Flash applet. The test URL points to a page on a web server on the protected network, and is made up of the concatenation of two variables, such as "http://www.example.com/" and "somepage.html".
The products from VPNC members that have passed the SSL Flash test are:
Also this month, one member tested for both the IPsec Basic Interoperability logo and the IPsec AES interoperability logo:
See the VPNC testing page for full lists of all the VPNC members' products which have proven interoperability.
AEP Networks
AEP Networks' SSL VPN Helps Lessen Critical Medical Situation
Certicom
GE's Security Business Licenses Certicom's Elliptic Curve Cryptography Technology
Check Point
Check Point Sets New Standard in Unified Security Management
Cisco
Cisco Advances Global Routing Leadership with New Cisco 7200 Router Products
Encore Networks
Encore Networks Introduces Environmentally Hardened Router For
Utilities' SCADA Networks
eSoft
eSoft Bolsters Content Security Leadership Position with SC Magazine Honors
F5
F5's FirePass 4100 Controller Selected "Hot Pick" by Information Security Magazine
Intoto
Intoto Debuts Turn-Key Unified Threat Management (UTM) Platform
Solution for Network Security OEMs
Internet Security Systems
Internet Security Systems Develops Prototype for Switch-Enabled Intrusion Prevention
Internet Security Systems
Internet Security Systems Empowers Service and Technology Providers to
Protect Customers from Online Attacks
Juniper
eHarmony Builds Lasting Relationship with Juniper Networks
NETGEAR
NETGEAR Broadens Its Security Portfolio with the Introduction of SSL VPN
Concentrator
Nokia
Nokia enhances security portfolio with Unified Threat Management (UTM)
Stonesoft
Stonesoft's Network Security Solutions To Be Part of Fujitsu's Service Offering
Stonesoft
Stonesoft provides grid network security for CERN openlab
Viking InterWorks
Viking InterWorks Introduces Industry's First Two Gigabit VPN/Firewall
Appliance For Under $6,000
Short Diffie-Hellman Secrets Can Break IKE Interoperability, from QA Cafe, describes a difficult-to detect issue that crops up in many IPsec implementations that are not careful about using the proper length of Diffie-Hellman keys. In short, some common crypto libraries will generate the wrong value for the key 1/256th of the time. This paper details why that is, and how IPsec implementors can avoid the problem in their code.
The VPNC Update is a low-volume, one-way newsletter to inform people about news in the VPN industry. Subscription is open to everyone, members and non-members alike. Previous issues of the newsletter can be found here. If you have questions about the content of VPNC Update, or suggestions or information for future issues, please send them to Paul Hoffman, VPNC's director.
To subscribe to this newsletter, send a message to
vpnc-update-request@vpnc.org
with the single word
subscribe
in the body of the message. To unsubscribe, send a message to
vpnc-update-request@vpnc.org
with the single word
unsubscribe
in the body of the message.
