From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 20 Sep 94 07:06:14 PDT
To: sdw@lig.net (Stephen D. Williams)
Subject: Re: Public key/3DES datastream software over WAN Bastions
In-Reply-To: <m0qmnuZ-0009sxC@sdwsys>
Message-ID: <9409201405.AA10436@snark.imsi.com>
MIME-Version: 1.0
Content-Type: text/plain



The IETF's IPSEC working group is specifying a security protocol for
use at the IP layer called IPSP that should provide the encrypted link
portion of what you want. A implementation of an earlier experimental
standard called swIPe is widely available. The idea behind these
things is to encrypt all your IP packets so the higher layers can
assume security to some extent...

.pm

Stephen D. Williams says:
> Has anyone produced software (preferably Unix based) that provides
> a public key authenticated, DES/3DES encrypted datastream over WAN
> firewalls/bastions?
> 
> A typical use would be to connect transaction feeds between two data
> centers in a secure, automated way over Internet.
> 
> I can't see anything conceptually difficult with it, and it seems the
> PGP library could be used to create simple Unix daemons.
> 
> sdw
> -- 
> Stephen D. Williams  Local Internet Gateway Co.; SDW Systems 510 503-9227APag
er
> LIG dev./sales       Internet: sdw@lig.net  In Bay Area Aug94-Feb95!!!
> OO R&D Source Dist.  By Horse: 2464 Rosina Dr., Miamisburg, OH 45342-6430
> Internet Consulting  ICBM: 39 38 34N 84 17 12W home, 37 58 41N 122 01 48W wor
k
> Newbie Notice:       
>      I speak for LIGCo., CCI, myself, and no one else, regardless of
>      where it is convenient to post from or thru.