IPsec

• Really should be common practice by now

• Standards process has been political and slow

• Doesn’t play well with NAT, so might have to wait for IPv6

• Key setup is the overriding performance factor

• Good: can add security to just about anything

• Bad: proper security should probably be application-specific

Previous slide

Next slide

Back to first slide

View graphic version