Presentation is loading. Please wait.

Presentation is loading. Please wait.

Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Update Developed by NRNS Inc. November 12, 2003.

Published byRoy Young Modified over 8 years ago

Similar presentations

Presentation on theme: "Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Update Developed by NRNS Inc. November 12, 2003."— Presentation transcript:

1 Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Update Developed by NRNS Inc. November 12, 2003

2 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa Modularization of Sub-Systems The DVC includes the following sub-systems: Firewall IPSec Routing DNS DVC sub-systems have been converted to Perl modules. An interface has been defined for each sub-system to facilitate porting to other platforms.

3 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa XML Format Messages DVC messages exchanged between local DVC processes converted to XML. The DVC control and status messages converted to XML. Control messages include proposed security policies by each peer. Locally defined “expect” policies now assist in validating policies proposed by remote partner. XML parser implemented as a Perl module with XML::Schema developed by Canon Research Centre Europe Ltd.

4 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa XML Based Configuration DVC configuration file converted to XML. DVC configuration file includes local and remote security policies for each peer. DVC is now able to receive configuration updates from the DVC Policy Editor via a secure/authenticated SSL channel. XML parser implemented as a Perl module with XML::Schema developed by Canon Research Centre Europe Ltd.

5 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa DVC Policy Editor DVC Policy Editor implemented in Java using the Java Architecture for XML Binding (JAXB). Requires Java 2 SDK version 1.4.1_02 or higher. Requires Java Web Services Developer Pack (JWSDP) version 1.2. Tested on Windows XP Professional and Redhat Linux 7.3/8.0.

6 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa DVC Policy Editor (continued) DVC Policy Editor requires that all objects be defined before they can be used within policies. Defined Objects include: Services Local DVC systems Local Networks Local Domains and Hosts Local Servers Local Services

7 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa DVC Policy Editor (continued) The DVC Policy Editor converts configuration information from its local XML format to the XML format expected by the DVC system. Pre-defined objects are expanded. DVC Policy Editor user must possess certificate issued by the local DVC in order to push policy to the DVC. Policy is pushed using a secure/authenticated SSL channel.

8 Defence R&D Canada - Ottawa Centre de recherches pour la défense Ottawa Currrent Work Porting DVC system to IPv6 including the integration of IPv6 support within the IPSec, Firewall, Routing and DNS subsystems to begin in mid November. IPv6 port to be completed in January 2004. Studying the feasibility of providing full key management system (KMS) to DVC with UMU- PKIv6.

Download ppt "Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Update Developed by NRNS Inc. November 12, 2003."

Similar presentations

© 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.
ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry.

ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry.
SLAC Remote Access and Citrix XPe Brian Scott SLAC May 2004.

SLAC Remote Access and Citrix XPe Brian Scott SLAC May 2004.
Configuring Windows to run Dr.Web scanner remotely.

Configuring Windows to run Dr.Web scanner remotely.
Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Developed by NRNS Inc. July 2, 2003.

Defence R&D Canada R et D pour la défense Canada Dynamic VPN Controller Developed by NRNS Inc. July 2, 2003.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
NETOP REMOTE CONTROL What’s new in version 9.5? DECEMBER 09 NETOP REMOTE CONTROL1.

NETOP REMOTE CONTROL What’s new in version 9.5? DECEMBER 09 NETOP REMOTE CONTROL1.
Agenda Introduction Network Access Protection platform architecture

Agenda Introduction Network Access Protection platform architecture
A.Vandenberg August 7, 2001 HE PKI Summit 20021 State of Georgia and PKI Art Vandenberg Director, Advanced Campus Services Information Systems & Technology.

A.Vandenberg August 7, 2001 HE PKI Summit State of Georgia and PKI Art Vandenberg Director, Advanced Campus Services Information Systems & Technology.
Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.

Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Technical Brief v1.0. Communication tools that broadcast visual content directly onto the screens of computers, using multiple channels and formats Easy.

Technical Brief v1.0. Communication tools that broadcast visual content directly onto the screens of computers, using multiple channels and formats Easy.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Rheeve: A Plug-n-Play Peer- to-Peer Computing Platform Wang-kee Poon and Jiannong Cao Department of Computing, The Hong Kong Polytechnic University ICDCSW.

Rheeve: A Plug-n-Play Peer- to-Peer Computing Platform Wang-kee Poon and Jiannong Cao Department of Computing, The Hong Kong Polytechnic University ICDCSW.
15.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

15.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.

Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Virtual Private Network (VPN) © N. Ganesan, Ph.D..
© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.

© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.
SSL From Your Smartphone Support for Android Smartphones www.sharetech.com.twwww.sharetech.com.tw / www.higuard.comwww.higuard.com.

SSL From Your Smartphone Support for Android Smartphones /

Similar presentations

Ads by Google