- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
IPSec enables companies to build VPNs and other Internet-centered mission-critical applications with confidence that their data will remain secure. IPSec, Second Edition is the most authoritative, comprehensive, accessible, and up-to-date guide to IPSec technology. In this book, two leading authorities in IPSec standardization and implementation cover every facet of IPSec architecture and deployment -- and present detailed case studies that demonstrate how IPSec can be used to provide end-to-end security in real business environments. The authors lay the groundwork for understanding IPSec with a concise review of the relevant fundamentals of cryptography and TCP/IP networking. Next, they introduce IPSec's architecture and components, including its Encapsulating Security Payload (ESP), Authenticated Header (AH), Internet Key Exchange, IPSec modes, security associations, processing, and ICMP-related issues. IPSec, Second Edition contains detailed coverage of deployment issues, including policy definition, representation, distribution, and management; implementation architectures; and extensive case examples of IPSec usage in the real world. For every networking professional interested in Internet security -- not just security specialists!
Contents
Preface. I. OVERVIEW. 1. Cryptographic History and Techniques. Secrets in History. Rise of the Internet. Internet Security. Cryptographic Building Blocks. Crypto Concepts. More Information. 2. TCP/IP Overview. Introduction to TCP/IP. Addressing. Domain Name System. Security-at What Level? 3. IP Security Overview. The Architecture. Encapsulating Security Payload (ESP). Authentication Header (AH). Internet Key Exchange. II. DETAILED ANALYSIS. 4. IPSec Architecture. The IPSec Roadmap. IPSec Implementation. IPSec Modes. Security Associations. IPSec Processing. Fragmentation. ICMP. 5. The Encapsulating Security Payload (ESP). The ESP Header. ESP Modes. ESP Processing. 6. The Authentication Header (AH). The AH Header. AH Modes. AH Processing. 7. The Internet Key Exchange. ISAKMP. IKE. The IPSec DOI. Summary. III. DEPLOYMENT ISSUES. 8. Policy. Policy Definition Requirement. Policy Representation and Distribution. Policy Management System. Deployment. Setting Up the Policy. 9. IPSec Implementation. Implementation Architecture. IPSec Protocol Processing. Fragmentation and PMTU. ICMP Processing. 10. IP Security in Action. End-to-End Security. 11. Deployment Scenarios (Using IPsec to Secure the Network). Site-to-Site Policies. Remote Access Policies. Four Office Company Example. Multiple Company Extranet Example. Outsourcing Networks. Summary. 12. IPSec Futures. Compression. Multicast. Key Recovery. L2TP. Public Key Infrastructure. Bibliography. Index.
