This is good information. I know that with our products, we can speak to
the Checkpoint FW-1, but we SHOULD be able to speak to other IPSec vendors
as well. The caveat being that we haven't tested it with other products
"IPSec". Unfortunately at this stage the only way for some people to find
out if the solution they are considering is truly compatible IPSec, they
need to test it in their environment. ICSA is a great place to start.
Tim Beloney
Western Region Sales Manager
Sonic Systems, Inc
408.327.7852 (direct)
888.55.SONIC (corporate)
http://www.sonicsys.com/
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
On Behalf Of Christopher L. Werner
Sent: Monday, April 12, 1999 11:20 AM
To: [EMAIL PROTECTED]
Subject: Re: IPSec products
ICSA currently tests the various IPSec products for interoperability and
conformance to the current specifications (Drafts and RFCs). They are
currently testing many of the products for conformance to their '1.1' set of
criteria. Their web site is
http://www.icsa.net/services/product_cert/ipsec/certified_products.shtml
There are many products which claim to run IPSec. Unfortunately some of them
have created implimentations using the old 182x series RFCs or are only
compatible with themselves. The certification program provides a higher
level of assurance to the consumer that the products actually work. It is
difficult to make any claims of 'market leadership' at this early stage. The
next level of compatability, interoperability with a Certificate Authority,
will require much diligence for all the products to keep up with the
maturing technology specifications. After the first 10,000 units have been
sold and sucessfully utilized we can discuss 'market leadership' with more
confidence.
Caveat, the ICSA testing, although detailed, does not test the products with
a variety of applications flowing through them. In theory they are all only
IP packets, but reality may prove otherwise.
I would be remiss in saying that IPSec once proven and stable will be much
more transparant to the user than current security implimentations. It is
application independant, offers non-repudiation, strong algorithms,
multi-organizational scalability (the auto industry is currently using it as
their security methodology of choice - see http://www.anxo.com), and choice
of vendors and product implimentation - all interoperable.
At 06:16 PM 4/7/99 +0200, Peter Kunz wrote:
>Hi folks,
>Any links to reviews and tests of IPSec solutions? Looking for a vendor
with
>a wide range of OS support. Who's the market leader in IPSec?
>Thanks.
>
>
>cu
>-pete
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
======================================================================
Opinions expressed are my own and not necessarily those of my employer
======================================================================
Christopher L. Werner Robert Bosch Corporation
Customer Communications Engineer 38000 Hills Tech Dr.
(248)553-1389 Farmington Hills, MI 48331-3417
The first 40 years provide the material,
The next 30 provide the commentary. --- from a fortune cookie
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
