Skip to Main Content
Configuring SonicWALL Firewalls
book

Configuring SonicWALL Firewalls

by Dan Bendell
May 2006
Intermediate to advanced content levelIntermediate to advanced
600 pages
15h 25m
English
Syngress
Content preview from Configuring SonicWALL Firewalls
Damage & Defense…
Key Lifetime—Short versus Long and PFS
When planning your VPN deployment, consideration should be given to the key
lifetime and perfect forward secrecy in relation to security. Since enabling PFS
requires additional processing time and resources some administrators choose
not to use it, instead opting for a shorter key lifetime. This, however, can be a
bad practice. If a successful man-in-the-middle attack was able to discover the
SKEYID_d key, all keys derived from this key could be compromised. Enabling PFS,
even with a longer key life, is actually a more secure practice than having a short
key life with no PFS.
Public Key Cryptography ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Mastering VMware vSphere 6.7

Mastering VMware vSphere 6.7

Nick Marshall, Mike Brown, G. Blair Fritz, Ryan Johnson
Mastering VMware vSphere 6.7 - Second Edition

Mastering VMware vSphere 6.7 - Second Edition

Martin Gavanda, Andrea Mauro, Paolo Valsecchi, Karel Novak

Publisher Resources

ISBN: 1597492507