|
|
|
|
|
|
|
||
|
|
|
|||
 |
|||||
 |
     
|
 |
Nokia Brings Smart Card Support to VPNsBy Nokia's newest release features enhancements in the remote access, PKI, and management functionality of the whole line of Nokia VPN appliances. Specific enhancements include smart card support, external PKI support for increased functionality, and remote client support for IPSec over NAT (Network Address Translation). Smart cards are now being leveraged for use with VPNs for remote user authentication to provide a secure, convenient alternative to storing digital certificates and susceptible information on computer hard drives. Nokia's VPN smart card implementation lets mobile users connect to a Nokia VPN Gateway by inserting their personal smart cards into their computers' card readers and entering their PIN codes. An encrypted tunnel to the corporate network is created immediately by the Nokia VPN client software, which leverages the digital certificates on the smart cards. As all confidential authentication details reside on the smart cards instead of the computers themselves, unauthorized access is effectively prohibited. The Nokia VPN uses Setec's SetCOS PKI smart card, an ISO standard multi-application card with 16 KB of EEPROM for applications. It supports 1024 bit RSA keys, and both RSA key generation and RSA calculation are handled completely inside the card, thereby never compromising the sensitive private RSA keys. Another significant upgrade to the Nokia VPN solution is that Nokia VPN gateways and clients now operate across networks that perform network address translation (NAT). This enhancement allows mobile users to dial into the network from remote sites of varying networking environments, such as hotels and airports. Previously, remote VPN connections from behind a NAT device have been impossible due to converted IP address information. In addition to support for smart cards and IPSec over NAT, Nokia has also added the following software enhancements:
|
|||||||||
