- 10 Microsoft research projects
- 10 kitchen gadgets for the geek gourmet
- Verizon trounces competition
- Smartphone smackdown: Storm vs. iPhone
- FBI warns of holiday cyber scams
Secure Sockets Layer VPN testing turned out to be a fairly complex task. We started by building a test network consisting of client systems, the SSL VPN device and servers running different enterprise applications. Each SSL VPN device would be used to connect clients to servers, and we'd record the results of interoperability tests.
This immediately raised two questions: which clients to use and which servers. To determine which clients were important, we analyzed the HTTP Web server log files for a recent one-month period to see which clients are used most commonly. Because SSL VPN users might not be working from company-owned and controlled systems, we let the general Internet distribution of browsers guide us. We analyzed approximately 3 million unique visitors to find which browsers account for at least 1% of the systems, and came up with five browsers: Internet Explorer versions 5 and 6, Netscape versions 4.7 and 7, and Apple's Safari browser, spread across various versions of Macintosh and Windows operating systems.
We installed several client Windows systems running Windows 2000; some with the most recent patch kits and others patched only up to Service Pack 3. The Windows systems ran two versions of Internet Explorer (Version 5 and an up-to-date Version 6) and two versions of Netscape (Version 4.7 and an up-to-date Version 7.1). We also borrowed a PowerBook G4 from Apple to run three browsers on Macintosh OS X (Internet Explorer, Netscape and Safari).
On the server side, we identified 20 typical enterprise applications for SSL VPNs, including some simple Web applications in pure HTML, applications using JavaScript, iNotes from IBM, Outlook Web Access from Microsoft, WhatsUp from Ipswitch, several test Macromedia Flash applications, Java-based applications from Altio, Microsoft's Terminal Services, Citrix Systems' MetaFrameXP, Windows file servers, Network File Systems file servers, FTP file servers, terminal emulation using Telnet and SSH, NetScreen Technologies' Global Pro Firewall management system, and mail services using the standard Post Office Protocol, Internet Message Access Protocol and Simple Mail Transfer Protocol. Although we wanted to include some more complex enterprise applications, such as SAP, the time requirements and expense of installing them proved too much for our test team.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment