> At 02:09 PM 6/18/2002 -0500, you wrote: > >Just offhand I'd say that didn't sound too bad ... if the > security is to > >be any good it *ought* to require a bit of cpu time. > Basically it's a > > Why do you think that? > > Regards, Dustin
Just a gut feeling Dustin, if it's very easy (i.e. quick) to encrypt then it will probably be relativly easy to decrypt by a brute force attack. Plus the encrypt/decrypt is being run at both ends of the pipe so there's a possibility that we encrypt a packet and transmit it, and then wait until the other end has decrypted and ACK'd it before sending the next packet ... depending on how the VPN is written and buffer size etc. Is the VPN encrypting the packet contents or the complete packet? I would expect that the latter would be slower but has the advantage of hiding the traffic information. I'm just an interested observer here - not a VPN expert at all... although I'm tempted to give WalMart a call and see if I can order a VPN <grin> -- Edmund Cramp http://www.emgsrus.com/graffiti.htm
