Re: Encrypt/Decrypt all packets

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Stephan Wolf (stewo68_at_hotmail.com)
Date: 04/27/04

  • Next message: Stephan Wolf: "Re: NDIS Miniport install problem" 
    Date: Tue, 27 Apr 2004 21:04:16 +0200

    Besides what Brian said, if you need to encrypt *all* communication,
    better use a VPN (Virtual Private Network) between your "entities"
    (whatever that is in your case).

    VPN is the most popular method for this purpose, see e.g.

     http://www.microsoft.com/windows2000/technologies/communications/vpn/

    Stephan 

    ---
On Tue, 27 Apr 2004 01:01:04 -0700, LEMBAS <lembas at myway dot com>
wrote:
>I want to write a device driver that encrypts all the packets coming from the application layer. I think it should lie between the application layer and the transport layer(TCP,UDP,etc...). Am I right?
>
>I read MSDN and DDK help. But I cannot find anything for the beginners. What will I implement? Miniport? TDI? NDIS? or Can I do it in user mode just under the application layer?
>
>Just guide me about what should I read for a quick start?
>
>Thanks
>
>Ken
  • Next message: Stephan Wolf: "Re: NDIS Miniport install problem"

    Relevant Pages

    • Re: VPN questions
      ... concept of VPN: Everything that I transmit via an unsafe WLAN connection ... That's why you want to encrypt it. ... a VPN server, all the communication between me and the VPN server goes ...
      (comp.os.linux.networking)
    • Re: On Security with WiFi
      ... see it as HotSpot Shield, a program you install on your computer, and it ... creates an encrypted VPN to secure your data across the WiFi connection. ... There are also encrypted SOCKS proxies out there, ... encrypt is your web browser, ...
      (comp.sys.mac.system)
    • Re: GRE Tunnels without IPSEC risks.
      ... If you've got a VPN that ties the branch office to your main ... either side of your VPN tunnel, ... GRE Tunnels without IPSEC risks. ... payload, but doesn't encrypt it. ...
      (Security-Basics)
    • Re: security implications of allowing WAN access to LAN pop3 server.
      ... These are all really good options that Ray has given you. ... The best thing you could do is get your Sonicwall's VPN working. ... Implement a web based e-mail system that uses SSL to encrypt all ...
      (comp.security.firewalls)
    • Re: Security of NTFS encrypted file system
      ... File encryption itself is insecure if you can't encrypt the complete ... This is something handled best in the application layer. ... You should be able to backup the database anywhere without danger. ... it can end up on disk in page files or hibernation files. ...
      (sci.crypt)