IPSec & TLS/SSL Flashcards
SSL/TLS VPNs (Secure Sockets Layer/Transport Security Layer)
Note: Ignore as flashcard
Operate on layers 5 and 6 (Transport and Application)
Implemented through the remote user’s web browser and do not require the installation of special software. All major browsers support it.
Grant access to specific services based on the user’s role. Security is maintained by restricting access to only what’s needed.
Usually easier to configure an SSL VPN which can provide a more secure environment for remote access in some cases.
SSL/TLS is inherently supported by modern devices, and can usually be deployed without the need for specialist client-side software, or with lightweight browser-based clients otherwise.
SSL VPN’s Part 2
Note: Ignore as flash card
SSL has two modes
Portal Mode - Users access the VPN through a page in their web browser. Can only be used for web-based programs. Ideal for email, chat, file sharing, browser-based apps.
Tunnel Mode - Users can access any app on the network, including ones that are not web based. Browser-based apps are becoming industry standard. Offline programs can only be accessed via tunnel mode.
What layer do SSL/TLS VPN’s operate on?
Layer 5 and 6
Which VPN has Portal and Tunnel mode?
SSL/TLS
What layer do IPSec VPN’s operate on?
Layer 3
Is IPSec or TLS VPN’s better for site to site connections?
IPSec
Which VPN is more expensive to maintain but also more secure?
IPSec