Current Proceedings on Technology
Yazarlar: Defta (Ciobanu) Costinela Luminita
Konular:-
Anahtar Kelimeler:VPN,SSL,IPSec,Penetration testing,Network
Özet: A VPN is a private network constructed within a public network infrastructure, such as Internet. VPNs are widely used to create wide area networks (WANs) that span large geographic areas, to provide site-to-site connections to branch offices and to allow mobile users to dial up their company LANs. VPNs are generally considered to have strong protection for data communications, but if they are incorrectly configured they are still vulnerable, just as any other Internet-facing system. In the first part of this paper we will analyze and compare the key VPN security technologies, like IPsec and SSL. In the second part we will describe a common penetration testing methodology for VPNs. The objective is to discover vulnerabilities in the VPN implementation that an attacker may be able to exploit.