Overview
"The IPSec protocol suite is perhaps the most important mechanism for securing the future Internet, and is bound to become an inseparable part of the Internet protocol. This book is essential reading and a great reference for anyone who wants to use IPSec or to understand how it works. Clearly and fluently written, it provides the reader with an overall view and rationale, together with the necessary hands-on details. This is most definitely the right book at the right time!"—Ran Canetti, Staff Member, IBM Research
The insider's guide to IPSec for every networking professional—not just security specialists!
With IPSec, Internet security comes of age, enabling companies to build VPNs and other Internet-centered mission-critical applications with confidence that their data will remain secure. Now, there's an authoritative, comprehensive guide to IPSec—straight from two leading authorities in IPSec standardization and implementation.
Start by reviewing the fundamentals of computer and network security, and the tradeoffs associated with implementing security at each layer of the IP stack. Next, walk through IPSec's architecture and components; the role of authentication, encryption, encapsulating security payloads (ESPs); and Internet Key Exchange (IKE). Coverage includes:
- Using IPSec security in host-to-host, host-to-gateway, and gateway-to-gateway scenarios
- Security associations, SPIs, and other key concepts
- Establishing secure VPN tunneling
- Overlapping and shared security associations, nested and chained tunnels, and other implementation issues
- Practical guidance for setting policy onrouters and end-hosts
- A detailed look inside the IPSec kernel
Finally, preview the future of IPSec, with up-to-the-minute coverage of compression, multicast, mobility, and PKIX—enhancements that will be crucial to large-scale IPSec deployment. Whether you are a networking or Web professional, software developer, or security specialist, you must understand IPSec—and with this book, you will.