- 1. Presented
TuanTB
Virtual Private Network& Data Security
2. What is a VPN?
Introduction
3. What is a VPN?
1. Client access Site ( Client access LAN)
2. Intranet VPN
3. Extranet VPN
4. What is a VPN?
Remote User
Internet
AI&T Company
5. What is a VPN?
Internet
BachKim
Company
AI&T Company
Intranet VPN
6. What is a VPN?
Guest Company
Internet
AI&T Company
Extranet VPN
7. What about Security for VPN connection ?
Attackviatransmission line
Attack via stealing the certificate & Key
8. Attack via transmission line
Attacker
Remote User
Internet
AI&T Company
9. How to use a VPN?
1. OpenVPN software
2.Two Certificate (Client & Server) and one Key.
3. Password
10. Security Technology
- Hardening openvpn securityThe tls adds HMAC signature to all
SSL/TLS handshare packets for integrity verification. It is protect
again: 11. Dos attacks or port flooding. 12. Port scanningto
dertermine which server UDP Ports are in a listening state 13.
SSL/TLS handshake initiations from unauthorized machines 14. Larger
RSA Keys (default = 1024). By using the option: KEY_SIZE 15. Larger
symmetric keys (default = Blowfish-128-CBC). By using the option:
cipher = 16. Thereto,Supposea Attacker capture some packages. These
packages brings informationVPN Server (Ex: Port, Protocol,
destination or source IP,) They can only show that, becauce they
dont have any cer or key file.
Conclution
Any question ?