Ben, VNC Enterprise & Personal Editions encrypt session data (see http://www.realvnc.com/products/enterprise), other versions do not. Versions that do not support encryption use 3DES to perform challenge-response authentication of remote users.
Regards, Wez @ RealVNC Ltd. > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Benjamin Collar > Sent: 03 June 2005 13:20 > To: [email protected] > Subject: encryption & export restrictions > > Greetings > > I'm investigating the kinds of encryption included in VNC > software. This > is important because of the various export restrictions on encryption > software instituted by the US and many EU countries. > > The RFB spec and other sources acknowledge the use of DES encryption > during the initial handshaking. However, the spec says: > > "Note that after the security handshaking phase, it is possible that > further protocol data is over an encrypted or otherwise altered > channel." > > The handshake documentation lists other security types, but does not > explain what they mean: RA2, RA2ne, Tight, Ultra, TLS. These are in > addition to None and VNC Authentication. The quote from the spec does > not make it clear whether the noted encryption is external to > VNC (like > VNC over SSH) or internal. > > I'm guessing that "VNC Authentication" refers to DES. What > are the other > "security types" and what encryption, if any, do they use? Is there > encryption used anywhere else in the software? > > If this list is inappropriate for such a question, I would > appreciate it > if someone could point me in the right direction > > Thank you for your time > Ben > > -- > Benjamin Collar > Siemens AG > CT SE 2 > Embedded Linux > 089-636-53711 > _______________________________________________ > VNC-List mailing list > [email protected] > To remove yourself from the list visit: > http://www.realvnc.com/mailman/listinfo/vnc-list _______________________________________________ VNC-List mailing list [email protected] To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list
