on 17-Dec-2012 05:34
#opinionswanted #cloud #infosec
I asked this on Twitter as a general question after reviewing the results in the Completely Unscientific Hybrid Cloud Survey Results from Gartner DC 2012 and continued to wonder why IPSec VPN was specifically noted but SSL VPN was not. Certainly a VPN of some kind is a requirement, no argument there, but why IPSec? Why not SSL? Is there some bias against SSL or is it perhaps just that the presenter at the conference failed to offer it as an option?
Then I thought this is just one of many questions I'd like to hear more opinions on. Blogs are good for asking questions. Blogs are good at aggregating answers and opinions in one place. By golly, a blog is a good place to ask this question too!
So, without further adieu, your question for the week:
Sound off, share your opinion in a comment.
Some of the insights thus far:
- Smaller encapsulation
- IPsec deterministic, known overhead versus varaible
- IPSec VPN net-to-net shipping and widely available, SSPN VPN net-to-net not
- OpenVPN long available, choice of ports/protocols, more forgiving of latency
- Support and scalability
Looking forward to more insight on this one!