ECI TruSecc PCC-VPN

General, Research, Technology
ECI TruSecc PCC-VPN Our PCC (Private Communication Ciruit) framework is based on OpenVPN's VPN security model and RealVNC RFB protocol for VNC can be summarized as such: Use the IPSec ESP protocol for tunnel packet security, but then drop IKE in favor of SSL/TLS for session authentication. This allows for a lightweight, portable VPN implementation that draws on IPSec's strengths, without introducing the complexity of IKE. PCC stands for Private Communication Circuit.  PCC’s Benefit a company in the following ways - Extends Geographic Connectivity- a PCC connects remote workers to central resources, making it easier to set up global operations. Boosts Employee Productivity- A PCC solution enables telecommuters to boost their productivity by 22% - 45% (Gallup Organization and Opinion Research) by eliminating time-consuming commutes and by creating uninterrupted time…
Read More

Secure Email Options for Message Privacy

General, Technology
Fairly Secure, Actually via Creative Commons Search Many of us had assumed our feeble Gmail passwords were secure enough to keep prying eyes out of our email accounts. But with revelations that the NSA can pretty much demand any email service turn over valuable and private information about our email, more attention has been turning to sources for encrypted secure email services. So what can you use for secure email now?  Email is basically not secure. There are steps you can take to protect yourself, through both free and paid services, but the U.S. government has shown its willingness to compel even legendary secure email services like Lavabit--which Edward Snowden used for five years--to shut down. If you're truly paranoid, here are your options. Instant Messaging Instant messaging, often referred…
Read More

Overview

General, Research, RFC, Technology
This paper attempts to provide a common sense definition of the ECI TruSecc system and an overview of our solution set. The ECI TruSecc PCC is a hybrid developed from the technologies of VNC, PN (private networking) and VPN Virtual Network Computing (VNC) is a process by which a system’s desktop can not only be viewed but also engaged in an interactive session as well. The use of such a tool gives the system administrator the ability to administer and troubleshoot a system remotely. In this way, a target system on the next floor, the next building or even at an employee’s home is within reach. There are other methods available of establishing this type of remote viewing. The obvious example is Symantec’s PCAnywhere(http://www.symantec.com/pcanywhere/Consumer/). A VPN - Virtual Private Network…
Read More

Security Overview

General, Technology
OpenVPN cryptographic layer This is a technical overview of OpenVPN's cryptographic layer, and assumes a prior understanding of modern cryptographic concepts. For additional discussion on OpenVPN security. OpenVPN has two authentication modes: Static Key -- Use a pre-shared static key TLS -- Use SSL/TLS + certificates for authentication and key exchange In static key mode, a pre-shared key is generated and shared between both OpenVPN peers before the tunnel is started. This static key contains 4 independent keys: HMAC send, HMAC receive, encrypt, and decrypt. By default in static key mode, both hosts will use the same HMAC key and the same encrypt/decrypt key. However, using the direction parameter to --secret, it is possible to use all 4 keys independently. In SSL/TLS mode, an SSL session is established with bidirectional…
Read More

Circuit Network Components

E3, General, Research, Technology
In the context of RFC 2547bis, our PCC is a collection of policies, and these policies control connectivity among a set of sites. A customer site becomes a node connected to our backbone and their private communication circuit ports, where we provide each port with a VPN routing table. In RFC 2547bis terms, the VPN is then dynamically defined to support forwarding and the PCC.
Read More