Customer Reviews

IPSec: Securing VPNs

5 star:		(2)
4 star:		(1)
3 star:		(1)
2 star:		(0)
1 star:		(0)

 

 

I have found that the book gives an overview of IPSec, however, I don't believe that it goes in to enough analysis of it. I have read various RFCs on IPSec and was hoping for more of an interpretation and examples on the subject, as opposed to simply having the same idea rehashed, in a similar fashion. These RFCs are rather difficult to read, so a rehash of them would be beneficial if it explained the ideas more clearly. However, I found that the book sometimes used the exact phrases as the RFC and did not help further clarify the issue for me.

Secondly, the first third of the book is dedicated to TPC and cryptography subjects. This is useful if you are getting a first overview to this subject but for me, further PKI or IPSec chapters would have been more useful. Not that I am promoting them, but I'd suggest one of Schneier's well-known books for an indepth look at cryptography.

Thirdly, I find that the book was not well edited and has numerous mistakes in it. This made it slightly difficult (although, more bothersome than difficult) to read. For example, I also found that Figure 10-18 is wrong and incomplete. This lack of proofing makes me question the validity of claims that were made throughout the book, especially the claim of how long a given length key (for example 1024 or 2048 bits) will be secure for. I am not saying that his claims are false, but I wonder if they were made with the same haste as the final proofing of the book was.

I enjoyed the final chapter, which presented a VPN solution, because it gave me an idea of the steps that are required for deployment. Note that although this doesn't degrade the value to me of this chapter, the 3 components he used in his deployment example are all products of Network Associates Inc, his employer.

This book is good before reading RFCs.
There are many RFCs, but if you are not familiar on RFCs.
IF you are not specialist of security, you may read almost all of them.

At 2.4.6 Performance Comparison of the AES Finalists, It introduced the URL http://www.nist.gov/aes.
But on the URL, there are a warning "Archive info: This page is provided for historical purposes. It is no longer maintained and may contain errors or inaccuracies."

This book is only the guide for starting to study security technologies.



http://csrc.nist.gov/archive/aes/round2/conf3/papers/25-mtakenaka.pdf

this is a great book, I work for a VPN software developer and always wondered about the details about things like smart cards, tokens and even just certificates. This is it, now i really everyone uses some form of PKI. This book is written by RSA press, RSA as we know "invented" encryption.

This is a clearly written and nicely illustrated book.