IPSec
Prentice Hall (Verlag)
978-0-13-046189-6 (ISBN)
- Titel ist leider vergriffen;
keine Neuauflage - Artikel merken
IPSec enables companies to build VPNs and other Internet-centered mission-critical applications with confidence that their data will remain secure. IPSec, Second Edition is the most authoritative, comprehensive, accessible, and up-to-date guide to IPSec technology. In this book, two leading authorities in IPSec standardization and implementation cover every facet of IPSec architecture and deployment -- and present detailed case studies that demonstrate how IPSec can be used to provide end-to-end security in real business environments. The authors lay the groundwork for understanding IPSec with a concise review of the relevant fundamentals of cryptography and TCP/IP networking. Next, they introduce IPSec's architecture and components, including its Encapsulating Security Payload (ESP), Authenticated Header (AH), Internet Key Exchange, IPSec modes, security associations, processing, and ICMP-related issues. IPSec, Second Edition contains detailed coverage of deployment issues, including policy definition, representation, distribution, and management; implementation architectures; and extensive case examples of IPSec usage in the real world. For every networking professional interested in Internet security -- not just security specialists!
NAGANAND DORASWAMY is a senior principal engineer at Nortel Networks in Billerica, MA and an active participant in the IETF and key industry panels on VPNs and IP security. He was a network security architect at Bay Networks (currently Nortel Networks) and is currently working on next-generation router architectures and protocols. He was the technical lead for IP Security at FTP Software. DAN HARKINS, formerly a senior software engineer in the Network Protocol Security Group at Cisco Systems, is currently a Senior Scientist at Network-Alchemy in Santa Cruz, CA and is active in several IETF working groups. He wrote IPSec's standard Internet Key Exchange (IKE) key management protocol.
Preface.
I. OVERVIEW.
1. Cryptographic History and Techniques.
Secrets in History. Rise of the Internet. Internet Security. Cryptographic Building Blocks. Crypto Concepts. More Information.
2. TCP/IP Overview.
Introduction to TCP/IP. Addressing. Domain Name System. Security-at What Level?
3. IP Security Overview.
The Architecture. Encapsulating Security Payload (ESP). Authentication Header (AH). Internet Key Exchange.
II. DETAILED ANALYSIS.
4. IPSec Architecture.
The IPSec Roadmap. IPSec Implementation. IPSec Modes. Security Associations. IPSec Processing. Fragmentation. ICMP.
5. The Encapsulating Security Payload (ESP).
The ESP Header. ESP Modes. ESP Processing.
6. The Authentication Header (AH).
The AH Header. AH Modes. AH Processing.
7. The Internet Key Exchange.
ISAKMP. IKE. The IPSec DOI. Summary.
III. DEPLOYMENT ISSUES.
8. Policy.
Policy Definition Requirement. Policy Representation and Distribution. Policy Management System. Deployment. Setting Up the Policy.
9. IPSec Implementation.
Implementation Architecture. IPSec Protocol Processing. Fragmentation and PMTU. ICMP Processing.
10. IP Security in Action.
End-to-End Security.
11. Deployment Scenarios (Using IPsec to Secure the Network).
Site-to-Site Policies. Remote Access Policies. Four Office Company Example. Multiple Company Extranet Example. Outsourcing Networks. Summary.
12. IPSec Futures.
Compression. Multicast. Key Recovery. L2TP. Public Key Infrastructure.
Bibliography.
Index.
| Erscheint lt. Verlag | 21.3.2003 |
|---|---|
| Reihe/Serie | Prentice Hall PTR Internet Infrastructure Series |
| Verlagsort | Upper Saddle River |
| Sprache | englisch |
| Maße | 178 x 232 mm |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| Mathematik / Informatik ► Informatik ► Web / Internet | |
| ISBN-10 | 0-13-046189-X / 013046189X |
| ISBN-13 | 978-0-13-046189-6 / 9780130461896 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
aus dem Bereich
