Lesson 2: What is VPN (Virtual Private Network)?
- Data corruption in traffic
- Data theft in traffic
- Password and account theft
- Network based attacks
IPsec provides protection to network data traffics as follows;
Confidentiality
The data must available only for the intended recipient. Other cannot be accessed. The data being encrypted while its journey.
The data must available only for the intended recipient. Other cannot be accessed. The data being encrypted while its journey.
Integrity
The data gets by the intended recipient is the same that sender send it. That means data is not manipulated while it’s travelling from source to destination. IPsec provides data integrity by using hashing algorithm.
The data gets by the intended recipient is the same that sender send it. That means data is not manipulated while it’s travelling from source to destination. IPsec provides data integrity by using hashing algorithm.
Authentication
Sender and the recipient should prove their identity with each other. IPsec provides it by using digital certificate or pre-shared key.
Protection against replay attacks: Data can be
hacked between sender device and recipient device (man in the middle attack).
Re-play attack gets data illegally and use it for fake authentication or
duplicate the transaction. IPsec protects from re-play attack by using sequence
of numbers which are built into IPsec packets. By using the sequence numbers
IPsec can identify the packets which it has already seen.
Post a Comment