Hi. I am assessing an environment that insists that all communications between hosts are "cryptographically authenticated" ie IP addresses are not enough. The environment includes internal hosts and hosts on the perimeter - web servers, application servers talking through to security and database hosts etc. Traffic could be anything from HTTPS to IIOP to SQLNet to whatever.
Are there any products / standards that provide such a facility. I guess you could do IP-SEC VPNs between hosts but this will open a pipe through the firewall layers that can't be inspected. Unless we don't encrypt (one of the other requirements is application level encryption). Also I don't know what the overhead of a VPN negotiation might add to the performance. I know that RSA's Keon does this functionality but is for protocols like telnet etc but it is targetted at user authentication as well for which there is already a solution ... I know that there is a host component of kerberos but again this is host and user based and user auth is taken care of. Please advise of any products or standards I am missing ... Ideas / flames to [EMAIL PROTECTED] J, ____________________________________________________________ Nokia Game is on again. Go to http://uk.yahoo.com/nokiagame/ and join the new all media adventure before November 3rd.
