Welcome to the latest issue of the VPNC Update. We hope you find the news in this issue valuable.
This month, VPNC welcomes another new member: phion.
phion is one of the leading European providers of communication protection solutions. phion offers solutions that meet the highest standards of availability, security and management. The netfence VPN solution includes an integrated personal firewall that offers comprehensive application protection features. Unrestricted connectivity is provided by combining the benefits of IPsec and SSL-VPN, so that NAT Traversal and HTTPS/SOCKS proxy compatibility are possible. The netfence VPN solution also includes Microsoft NAP and Cisco NAC support.
VPNC is very pleased to introduce two new logos to its testing series: SSL Basic Network Extension and SSL Advanced Network Extension. These two logos test the type of network extension capabilities that typical corporate users expect in SSL VPNs.
The SSL Basic Network Extension test is for basic network extension functionality: secure tunneling of normal IP traffic through SSL to an internal network protected by the SSL VPN gateway. This test consists of a client accessing a server on the protected network on a custom TCP port. To pass this test, the gateway must encrypt traffic to the server and must not need to have the specific server and port number assigned during setup.
The SSL Advanced Network Extension test determines whether or not the SSL VPN gateway can trap and securely tunnel all traffic coming from a remote access client, even traffic not destined for the internal network. To pass this test, the gateway must encrypt all traffic from the remote access client destined to a server on the Internet, and must then decrypt the traffic within the gateway and pass it to its destination.
The products from VPNC members that have passed the SSL Basic Network Extension test are:
The products from VPNC members that have passed the SSL Advanced Network Extension test are:
VPNC regularly retests systems when their software, firmware, or hardware has a significant change. This assures customers that new versions don't break interoperability that has already been established.
This month, one member retested for all of the SSL VPN Interoperability logos based on a major new release of their software:
See the VPNC testing page for full lists of all the VPNC members' products which have proven interoperability.
AEP Networks
AEP Networks Announces the First Geographical Load Balancing SSL VP
Check Point
Check Point Unveils Industry's First Fully-Hosted Security Management
Service for MSSPs
Cisco
Cisco and Cisilion Help Improve Healthcare Services and Reduce Costs
for Suffolk NHS
D-Link
D-Link Showcases End-To-End Networking Solutions At Interop 2007
eSoft
eSoft Secures European Roots by Establishing EMEA Sales Headquarters
F5
F5 Earns Spot on Standard and Poor's 2007 Global Challengers List
F5
F5 Positioned in the Leaders Quadrant of the 'Application Delivery
Products' 2007 Magic Quadrant
Internet Security Systems
IBM Internet Security Systems Accelerates Network Performance with New
Intrusion Prevention Appliance
Juniper
Juniper Networks Fortifies Network Security Portfolio
Juniper
Juniper Networks Enterprise Solutions Win Multiple Network World Awards
Mistletoe Technologies
Mistletoe Technologies SlimLine Products Enhance Infrastructure with
Bullet-Proof Security for IP-Based Surveillance and Communications
Mistletoe Technologies
Mistletoe Technologies Addresses Increasing Network Complexity with New
Ultra-Compact, Low-Power, Multi-Gigabit SlimLine Appliances
Mocana
Mocana Announces Support for IKEv2, EAP-IKEv2, and MOBIKE Protocols
Nokia
New Nokia security appliances go deep to find threats, meet growing
network performance demands
RetiCorp
RetiCorp Partners with TheGreenBow to provide IPSec VPN Software
Stonesoft
StoneGate Management Center 4.0 version released
The IETF has recently released an update to an important IPsec RFC. RFC 4835, "Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH)", updates and therefore replaces RFC 4305.
The changes in the new document are in the requirements language for null authentication and AES encryption. Null authentication now must be supported in devices (it was completely optional before), and AES in CBC mode also must be supported (it was strongly suggested before).
The VPNC Update is a low-volume, one-way newsletter to inform people about news in the VPN industry. Subscription is open to everyone, members and non-members alike. Previous issues of the newsletter can be found here. If you have questions about the content of VPNC Update, or suggestions or information for future issues, please send them to Paul Hoffman, VPNC's director.
To subscribe to this newsletter, send a message to
vpnc-update-request@vpnc.org
with the single word
subscribe
in the body of the message. To unsubscribe, send a message to
vpnc-update-request@vpnc.org
with the single word
unsubscribe
in the body of the message.
