[This message was posted by Simon Flannery of Thomson Routers <simon.flann...@gmail.com> to the "Information Security" discussion forum at http://fixprotocol.org/discuss/3. You can reply to it on-line at http://fixprotocol.org/discuss/read/a1eb07dd - PLEASE DO NOT REPLY BY MAIL.]
Hey Mark, Yes, you are correct. Sending plain-text over the internet is not wise :) Unfortunately not a lot of buy/sell side network elements natively support the concept of IPSec due to the use of private LANs and WANs. As for the product you mentioned, I suggest to check out (and enquire regarding) their product road map. Alas, I know the answer is no from personal experience. :( However, there are easy methods to use IPSec to protect FIX (over the internet). I suggest installing a router with IPSec on both sides (buy/sell) just before your FIX network elements. This way, both the end network elements can speak plain-text FIX, and the routers will encrypt and decrypt the FIX as it is transmitted over the internet. Using 128/256 bit encryption and AES, this will be impossible to break, and it is safe to sniff with WireShark. [You can unsubscribe from this discussion group by sending a message to mailto:unsubscribe+10093...@fixprotocol.org] -- You received this message because you are subscribed to the Google Groups "Financial Information eXchange" group. To post to this group, send email to fix-protocol@googlegroups.com. To unsubscribe from this group, send email to fix-protocol+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/fix-protocol?hl=en.
