logging in or signing up VPN swarupkumarmall Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 161 Category: Science & Tech.. License: All Rights Reserved Like it (0) Dislike it (0) Added: April 12, 2011 This Presentation is Public Favorites: 0 Presentation Description vpn allows company to share/communicate secure data inside their campus....if the seminar is helpful then mail me at-swarupkumall@gmail.com u can follow me at-facebook.com/swarupkumarmall Comments Posting comment... By: swarupkumarmall (13 month(s) ago) vpn allows company to share/communicate secure data inside their campus....if the seminar is helpful then mail me at-swarupkumall@gmail.com u can follow me at-facebook.com/swarupkumarmall Saving..... Post Reply Close Saving..... Edit Comment Close Premium member Presentation Transcript VIRTUAL PRIVATE NETWORK(VPN): Presented By:- Swarup kumar mall Roll no.-b040826 Regd. No.-0801307178 Branch:-I.T. VIRTUAL PRIVATE NETWORK(VPN) Introduction: V- virtual P-private N-network Introduction VPN: Fundamentally, a VPN is a set of tools which allow networks at different locations to be securely connected, using a public network as the transport layer. VPNs are most commonly used today for telecommuting and linking branch offices via secure WANs. VPN WHY VPN?: Separate private networking solutions are expensive and cannot be updated quickly to adapt to changes in business requirements. The Internet is inexpensive but does not by itself ensure privacy. Connect two sites. Allow remote access by individual users . WHY VPN?What a VPN needs??: VPNs must be encrypted so no one can read it VPNs must be authenticated No one outside the VPN can alter the VPN All parties to the VPN must agree on the security properties What a VPN needs??Implemantations: IPSec Tunnel Mode RFC 2401 Point-to-Point Tunneling Protocol (PPTP) RFC 2637 -Usually used with serial connections. - Provides IP connection between two points. -Establishes IP address at both ends of connection . Layer 2 Tunneling Protocol (L2TP) RFC 2661 Implemantations VPN TECHNOLOGY : VPN TECHNOLOGY Tunneling Authentication Access Control Data Security Tunneling: PPTP – (Point-to-Point Tunneling Protocol) Uses a TCP connection for tunnel maintenance and generic routing encapsulated PPP frames for tunneled data. The payloads of the encapsulated PPP frames can be encrypted and/or compressed. L2TP – (Layer 2 Tunneling Protocol) Uses UDP and a series of L2TP messages for tunnel maintenance. Tunneling User Authentication: The solution must identify the user’s identity and only allow access to authorized users. The user account can be a local account on the VPN server or, in most cases, a domain account granted appropriate dial-in permissions. The default policy for remote access is “Allowed access if dial-in permission is enabled.” User Authentication Access Control: limiting unauthorized users from accessing the network. Authentication – validates that the data was sent from the sender. Confidentiality – preventing the data to be read or copied as the data is being transported. Data Integrity – ensuring that the data has not been altered Access Control Data Security : Data sent and received over the Internet must be encrypted for privacy. PPTP and L2TP use PPP-based data encryption methods Optionally you can use Microsoft Point-to-Point Encryption (MPPE), based on the RSA RCA algorithm Microsoft Implementation of the L2TP protocol uses IPSec encryption to protect the data stream form the client to the tunnel server. Data Security VPN Categories:-: There are three basic VPN categories: Intranet Extranet Internet VPN Categories :-Intranet VPN:-: An intranet VPN connects resources from the same company across that company's infrastructure. An example of intranet VPN is the connections between different locations within a company's infrastructure, such as VPNs between two offices. Intranet VPN :-Extranet VPN:-: An extranet VPN connects resources from one company to another company, such as a business partner. An example of an extranet is a company that has outsourced its help desk functions and sets up a VPN to provide a secure connection from its corporate office to the outsourcing company . Extranet VPN :-Internet VPN:-: An Internet VPN uses a public network as the backbone to transport VPN traffic between devices. As an example, you might use the Internet, which is a public network, to connect two sites together or have telecommuters use their local ISPs to set up a VPN connection to the corporate network remote access connections). Internet VPN :-How does a VPN achieve security?: A VPN must protect against passive and active attacks. A passive attacker has no ability to interrupt or modify the data channel between two parties. Encryption is effective at defeating passive attacks. How does a VPN achieve security? Active Attacks-: An active attacker has the ability to insert himself into the communication channel and add, modify, or delete data packets between both parties to the channel. For this reason, such attacks are commonly referred to as Man-in-the-middle attacks. Active Attacks- Advantages: : - Eliminating the need for expensive long-distance leased lines. -Reducing the long-distance telephone charges for remote access. -Flexibility of growth -Efficiency with broadband technology Advantages: Disadvantages:: VPNs require an in-depth understanding of public network security issues and proper deployment of precautions Availability and performance depends on factors largely outside of their control Immature standards VPNs need to accommodate protocols other than IP and existing internal network technology Disadvantages : Applications:: Healthcare : enables the transferring of confidential patient information within the medical facilities & health care provider Manufacturing: allow suppliers to view inventory & allow clients to purchase online safely Retail: able to securely transfer sales data or customer info between stores & the headquarters Banking/Financial : enables account information to be transferred safely within departments & branches General Business communication between remote employees can be securely exchanged Applications: . REFERENCES: Data communications & networking- Behrouz a forouzan (chapter-30,31,32) http://compnetworking.about.com/od/vpn/a/vpn_tutorial.htm http://en.wikipedia.org/wiki/Vpn For IPSec: www.freeswan.org . REFERENCESAny questions????: Any questions????: THANK YOU You do not have the permission to view this presentation. In order to view it, please contact the author of the presentation.
VPN swarupkumarmall Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 161 Category: Science & Tech.. License: All Rights Reserved Like it (0) Dislike it (0) Added: April 12, 2011 This Presentation is Public Favorites: 0 Presentation Description vpn allows company to share/communicate secure data inside their campus....if the seminar is helpful then mail me at-swarupkumall@gmail.com u can follow me at-facebook.com/swarupkumarmall Comments Posting comment... By: swarupkumarmall (13 month(s) ago) vpn allows company to share/communicate secure data inside their campus....if the seminar is helpful then mail me at-swarupkumall@gmail.com u can follow me at-facebook.com/swarupkumarmall Saving..... Post Reply Close Saving..... Edit Comment Close Premium member Presentation Transcript VIRTUAL PRIVATE NETWORK(VPN): Presented By:- Swarup kumar mall Roll no.-b040826 Regd. No.-0801307178 Branch:-I.T. VIRTUAL PRIVATE NETWORK(VPN) Introduction: V- virtual P-private N-network Introduction VPN: Fundamentally, a VPN is a set of tools which allow networks at different locations to be securely connected, using a public network as the transport layer. VPNs are most commonly used today for telecommuting and linking branch offices via secure WANs. VPN WHY VPN?: Separate private networking solutions are expensive and cannot be updated quickly to adapt to changes in business requirements. The Internet is inexpensive but does not by itself ensure privacy. Connect two sites. Allow remote access by individual users . WHY VPN?What a VPN needs??: VPNs must be encrypted so no one can read it VPNs must be authenticated No one outside the VPN can alter the VPN All parties to the VPN must agree on the security properties What a VPN needs??Implemantations: IPSec Tunnel Mode RFC 2401 Point-to-Point Tunneling Protocol (PPTP) RFC 2637 -Usually used with serial connections. - Provides IP connection between two points. -Establishes IP address at both ends of connection . Layer 2 Tunneling Protocol (L2TP) RFC 2661 Implemantations VPN TECHNOLOGY : VPN TECHNOLOGY Tunneling Authentication Access Control Data Security Tunneling: PPTP – (Point-to-Point Tunneling Protocol) Uses a TCP connection for tunnel maintenance and generic routing encapsulated PPP frames for tunneled data. The payloads of the encapsulated PPP frames can be encrypted and/or compressed. L2TP – (Layer 2 Tunneling Protocol) Uses UDP and a series of L2TP messages for tunnel maintenance. Tunneling User Authentication: The solution must identify the user’s identity and only allow access to authorized users. The user account can be a local account on the VPN server or, in most cases, a domain account granted appropriate dial-in permissions. The default policy for remote access is “Allowed access if dial-in permission is enabled.” User Authentication Access Control: limiting unauthorized users from accessing the network. Authentication – validates that the data was sent from the sender. Confidentiality – preventing the data to be read or copied as the data is being transported. Data Integrity – ensuring that the data has not been altered Access Control Data Security : Data sent and received over the Internet must be encrypted for privacy. PPTP and L2TP use PPP-based data encryption methods Optionally you can use Microsoft Point-to-Point Encryption (MPPE), based on the RSA RCA algorithm Microsoft Implementation of the L2TP protocol uses IPSec encryption to protect the data stream form the client to the tunnel server. Data Security VPN Categories:-: There are three basic VPN categories: Intranet Extranet Internet VPN Categories :-Intranet VPN:-: An intranet VPN connects resources from the same company across that company's infrastructure. An example of intranet VPN is the connections between different locations within a company's infrastructure, such as VPNs between two offices. Intranet VPN :-Extranet VPN:-: An extranet VPN connects resources from one company to another company, such as a business partner. An example of an extranet is a company that has outsourced its help desk functions and sets up a VPN to provide a secure connection from its corporate office to the outsourcing company . Extranet VPN :-Internet VPN:-: An Internet VPN uses a public network as the backbone to transport VPN traffic between devices. As an example, you might use the Internet, which is a public network, to connect two sites together or have telecommuters use their local ISPs to set up a VPN connection to the corporate network remote access connections). Internet VPN :-How does a VPN achieve security?: A VPN must protect against passive and active attacks. A passive attacker has no ability to interrupt or modify the data channel between two parties. Encryption is effective at defeating passive attacks. How does a VPN achieve security? Active Attacks-: An active attacker has the ability to insert himself into the communication channel and add, modify, or delete data packets between both parties to the channel. For this reason, such attacks are commonly referred to as Man-in-the-middle attacks. Active Attacks- Advantages: : - Eliminating the need for expensive long-distance leased lines. -Reducing the long-distance telephone charges for remote access. -Flexibility of growth -Efficiency with broadband technology Advantages: Disadvantages:: VPNs require an in-depth understanding of public network security issues and proper deployment of precautions Availability and performance depends on factors largely outside of their control Immature standards VPNs need to accommodate protocols other than IP and existing internal network technology Disadvantages : Applications:: Healthcare : enables the transferring of confidential patient information within the medical facilities & health care provider Manufacturing: allow suppliers to view inventory & allow clients to purchase online safely Retail: able to securely transfer sales data or customer info between stores & the headquarters Banking/Financial : enables account information to be transferred safely within departments & branches General Business communication between remote employees can be securely exchanged Applications: . REFERENCES: Data communications & networking- Behrouz a forouzan (chapter-30,31,32) http://compnetworking.about.com/od/vpn/a/vpn_tutorial.htm http://en.wikipedia.org/wiki/Vpn For IPSec: www.freeswan.org . REFERENCESAny questions????: Any questions????: THANK YOU