Securing tcp data

Securing tcp data
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Securing tcp data Mark 11-10-2005
Posted by Mark on November 10, 2005, 2:51 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi,

We need to secure the communication between a tcp/ip server and a
remote client. The protocol is propriatory but simple and
communicates on a single port.

The current thinking is to use SSL. The server runs on OpenVMS and
the clients must run on lots of platforms: Windows, Linux, UNIX,
OpenVMS to name but four.

Would a SSL proxy work in this case? It would save us rewriting the
existing code? Are there any proxies that work on these OSs? Would
it be possible to use different proxies at client and server ends?

TIA, Mark.



Posted by Todd H. on November 10, 2005, 9:32 am
If you were  Registered and logged in, you could reply and use other advanced thread options
> Hi,
>
> We need to secure the communication between a tcp/ip server and a
> remote client.

You might also consider some simple VPN hardware appliances. They're
quite inexpensive these days.

Implementation specifics and choice of technology depend on a lot of
things that exist on both ends already. SSL will certainly provide
transport layer security of the data, but it's not clear to me how it
alone can provide you authentication and authorization functionality.

Best Regards,
--
Todd H.
http://www.toddh.net/


Posted by Mark on November 11, 2005, 11:07 am
If you were  Registered and logged in, you could reply and use other advanced thread options

>Hi,
>
>We need to secure the communication between a tcp/ip server and a
>remote client. The protocol is propriatory but simple and
>communicates on a single port.
>
>The current thinking is to use SSL. The server runs on OpenVMS and
>the clients must run on lots of platforms: Windows, Linux, UNIX,
>OpenVMS to name but four.
>
>Would a SSL proxy work in this case? It would save us rewriting the
>existing code? Are there any proxies that work on these OSs? Would
>it be possible to use different proxies at client and server ends?

I misunderstood the original requirements. The secure channel is to
be in addition to a normal VPN. We want an additional level of
security in case something is compromised _behind_ our clients'
firewalls. i.e. we need to secure the data all the way from the
client's application to our application even if both are not hosted by
us.

Mark.



Similar ThreadsPosted
Securing the database from the DBA March 30, 2004, 7:51 am
Securing network from laptops July 23, 2005, 3:44 pm
Securing code in embedded devices February 14, 2005, 5:08 pm
Solution for securing VPN/RAS using 2-factor SMS Authentication June 12, 2005, 3:01 am
Securing Endpoint Access such as USB Ports January 5, 2006, 7:47 am
Data Recovery November 28, 2004, 12:06 pm
data security July 19, 2005, 2:39 pm
CPU that will not execute data? September 21, 2005, 12:10 pm
Serious level HDD data protection May 11, 2004, 2:40 am
Transfer of data via handshake July 20, 2006, 3:54 am

The site map in XML format XML site map

Contact Us | Privacy Policy