Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Latest News
    • Networking

    Arcot for VPN Update Avoids Hardware Hassles

    By
    Andrew Garcia
    -
    June 25, 2001
    Share
    Facebook
    Twitter
    Linkedin

      Authentication is the weakest link in VPN security, forcing administrators to weigh the importance of cost, ease of deployment and strength of security. Public-key infrastructure provides a robust and scalable authentication option, but the security of the remote users private key becomes paramount. Password protection for private keys, although inexpensive and easy to deploy, is also an easily corrupted security measure. Meanwhile, hardware such as tokens or smart cards are expensive and difficult to deploy.

      Arcot Systems Inc. lets administrators wave goodbye to these problems with Arcot for VPN 1.2, an update of its authentication software that requires remote users to provide a PIN and a software container called the Arcot ID to authenticate their identity to a virtual private network and Arcots RADIUS (Remote Authentication Dial-In User Service)-based server. With its low cost and minimal deployment overhead, Arcot for VPN is a sound investment for VPN deployments of any scope.

      The Arcot ID is protected by a bait-and-switch technology called Cryptographic Camouflage—sort of a VPN honey pot, if you will. Cryptographic Camouflage protects the private key within the Arcot ID from offline brute-force or password list attacks by generating numerous false-positive PIN results. Whereas an attack against a password-protected system reveals one plausible result (the correct PIN), an attack on the Arcot container yields thousands of plausible PINs, enticing intruders to interactively log in with incorrect information, thus instigating a user lockout.

      Arcot for VPN 1.2, which was released last month, works with four major VPN product lines, adding support for Cisco Systems Inc.s VPN 3000 concentrators, Intel Corp.s NetStructure gateways and Nortel Networks Corp.s Contivity switches to the support it already has for Check Point Software Technolgies Ltd.s VPN-1 4.1. Although eWeek Labs believes that this is still a disappointingly small number of products, it covers a large segment of the market.

      The price for Arcots software depends on the number of licenses purchased. Licenses for 1,000 users cost about $15 per user. The server software component is included free with the client licenses. Round-the-clock support can be purchased for 15 percent of the licensing cost.

      In tests, we integrated Arcot for VPN with Check Points VPN-1 using Check Points proprietary FWZ key management scheme, although Arcot recommends using Internet Key Exchange authentication. We installed Arcot for VPN on a server running Windows NT 4.0 inside an encrypted domain (Windows 2000 is not yet supported).

      Andrew Garcia
      Andrew cut his teeth as a systems administrator at the University of California, learning the ins and outs of server migration, Windows desktop management, Unix and Novell administration. After a tour of duty as a team leader for PC Magazine's Labs, Andrew turned to system integration - providing network, server, and desktop consulting services for small businesses throughout the Bay Area. With eWEEK Labs since 2003, Andrew concentrates on wireless networking technologies while moonlighting with Microsoft Windows, mobile devices and management, and unified communications. He produces product reviews, technology analysis and opinion pieces for eWEEK.com, eWEEK magazine, and the Labs' Release Notes blog. Follow Andrew on Twitter at andrewrgarcia, or reach him by email at agarcia@eweek.com.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×