[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPSec vs SSL

To: ipsec@lists.tislabs.com
Subject: Re: IPSec vs SSL
From: Michael Richardson <mcr@solidum.com>
Date: Fri, 31 Mar 2000 16:19:00 -0500
In-Reply-To: Your message of "Fri, 31 Mar 2000 13:34:26 CST." <38E4FDC2.ADB3E177@certicom.com>
Sender: owner-ipsec@lists.tislabs.com


>>>>> "Yuri" == Yuri Poeluev <ypoeluev@certicom.com> writes:
    Yuri> You can't say that IPSec is more secure than SSL. It depends on
    Yuri> what crypto algorithms are really used in each case.  If you use
    Yuri> SSL, you'll get security at application level (a Web browser for
    Yuri> instance).  If you use IPSec, you'll get security at network level,
    Yuri> in which case all your applications can be protected. I say "can",

  It has nothing to do with that.
  You can use, for instance, SSL or a GSSAPI enabled SOCKS-Winsock client
and get "all your applications" protected. The difference between IPsec
and something like SSL that runs over TCP is that SSL gets killed as soon
as someone starts an active attack on the underlying TCP connection.

   :!mcr!:            |  Solidum Systems Corporation, http://www.solidum.com
   Michael Richardson |For a better connected world,where data flows faster<tm>
 Personal: http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html
	mailto:mcr@sandelman.ottawa.on.ca	mailto:mcr@solidum.com

References:

Re: IPSec vs SSL

From: Yuri Poeluev <ypoeluev@certicom.com>

Prev by Date: Re: IPSec vs SSL
Next by Date: Re: IPSec vs SSL
Prev by thread: Re: IPSec vs SSL
Next by thread: Re: IPSec vs SSL
Index(es):
- Main
- Thread