ADVANCED SECURITY
MultiNet provides several layers of security to protect against unauthorised network access and intruders from the Internet.
SECURE COPY PROTOCOL (SCP):
MultiNet 4.4 increases security with SCP support. SCP allows SSH users to perform secure file transfers across an insecure network. SCP utilises the SSH server and client as a basis for accomplishing this advanced level of security.
SCP performs similar functions to SFTP (Secure FTP) such as copying files in both directions, and optionally deleting files after they are copied.
SECURE SHELL V1, V2 (SSH):
SSH is a protocol that provides strong authentication and secure, encrypted communications over insecure channels. This transport layer protocol provides server authentication, confidentiality, and integrity with perfect forward secrecy.
MultiNet v4.4 offers SSH v1 and v2 servers and clients and the ability for users to simultaneously use both protocols. The new SSH v2 uses the more secure host-based authentication exchange called Diffie Helmann. Diffie Helmann provides additional security by eliminating the need for exchanging private keys over the wire. It also allows users the advantage of continually authenticating throughout the entire session. Security and flexibility are achieved through multiple levels of user authentication and strong encryption algorithms, including IDEA, DES, 3DES, ARCFOUR, Blowfish, Twofish, and CAST 128.
INCOMING/OUTGOING ACCESS RESTRICTIONS:
MultiNet's access restrictions provides an additional method of security to the network. MultiNet's outgoing access restrictions provide systems administrators with additional security by controlling those applications local users can or cannot access (such as restricting Web surfing or access to services like FTP or TELNET). MultiNet also imposes incoming restrictions on the remote hosts' access to local services.
TOKEN AUTHENTICATION:
MultiNet's token authentication provides a cost-effective, flexible security solution for protecting a user's OpenVMS systems from the Internet, and is the only OpenVMS solution that supports a variety of tokens.
PACKET FILTERING AND ADDITIONAL SECURITY LAYERS:
MultiNet's packet filtering capability complements existing firewall security by providing an additional security layer on internal networks. It can prevent your site from receiving datagrams from certain networks or hosts. Datagrams can be filtered by protocol (IP, ICMP, UDP, or TCP), source and destination address, or source and destination port.
0 comments:
Post a Comment