Intoto Upgrades IPsec VPNs with IKEv2 Support for Secure Enterprise Networking and Mobility Applications.

SAN FRANCISCO San Francisco (săn frănsĭs`kō), city (1990 pop. 723,959), coextensive with San Francisco co., W Calif., on the tip of a peninsula between the Pacific Ocean and San Francisco Bay, which are connected by the strait known as the Golden -- iGateway EX Product Line Implements the New Version of IKE for Improved Performance, Security, Reliability, and Remote Access Capabilities

Intoto, a leading provider of integrated security, wireless and voice software platforms to networking Original Equipment Manufacturers (OEMs), today announced the availability of IKEv2 functionality in its iGateway EX integrated software platforms for enterprise networking and mobility applications. The iGateway EX product family implements IKEv2, the latest authentication protocol for IPsec VPNs, to provide improved performance, security, reliability, and remote access capabilities.

"IKEv2 is quickly becoming a necessary ingredient in any enterprise-class security appliance," stated Jeff Wilson, principal analyst for VPNs and security at Infonetics Research, a San Jose-based networking market research firm. "Its simplified IKE message exchanges results in a reduced number of messages for common IPsec deployments, making it a more reliable protocol than its predecessor. OEMs looking to either integrate VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. functionality into an existing platform or create an entirely new device need to select software that provides this functionality."

Internet Key Exchange Internet key exchange (IKE) is the protocol used to set up a security association (SA) in the IPsec protocol suite. Overview
IKE is defined in RFC 2407, RFC 2408 and RFC 2409. IKEv2 is defined in RFC 4306. (IKE), a component of IPsec, is used for performing mutual authentication and establishing and maintaining Security Associations (SAs). The new IKEv2 specification merges multiple dependent specifications and requirements that have evolved over time since the original IKEv1 specification. These include legacy authentication, remote configuration and NAT traversal. By removing unnecessary requirements, the IKEv2 core framework is significantly simplified and produces better performance, security, and reliability through improved response time and throughput. The new protocol also improves interoperability with other security devices that incorporate IPsec VPNs.

"Intoto has always been a foundation member of ICSA See TruSecure. Labs' IPsec VPN Certification program which stresses secure interoperability," said Mark Zimmerman, technology programs manager at ISCA ISCA International Symposium on Computer Architecture
ISCA International Speech Communication Association
ISCA International Speedway Corporation (stock symbol)
ISCA International Society for Computers and Their Applications Labs. "This can be further demonstrated by their participation in the upcoming ICSA Labs IKEv2 Interoperability Workshop being held in Santa Clara, CA beginning February 22nd 2005. At this event, 10 new VPN products that have never seen the light of day based on new IKEv2 technology will be set up and tested against each other for the first time."

IKEv2 is the Internet Engineering Task Force's (IETF See Internet Engineering Task Force.

IETF - Internet Engineering Task Force ) attempt to simplify and consolidate IPsec VPN technology, as it has long been criticized as being too complex and confusing. "Lessons were learned from the mistakes made when IKEv1 was developed and the resulting lack of product interoperability," says Zimmerman. "They have now consolidated functional standards which will cut way down on a VPN product development team's confusion and/or misinterpretation."

With IKEv2 functionality, the Intoto iGateway EX product family is ideal for IPv4, IPv6 and mobile applications. Its mobility capabilities enable standardized GSM SIM authentication through EAP (Extensible Authentication Protocol) A protocol that acts as a framework and transport for other authentication protocols. EAP uses its own start and end messages, but then carries any number of third-party messages between the client (supplicant) and access control , allowing it to be more scalable than IKEv1. It also provides standardized support for client configuration, such as configuring IP addresses, DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the addresses and netmasks. Additionally, the IKEv1 applications are upgradeable to IKEv2.

"Our integration of IKEv2 functionality into the iGateway platform demonstrates once again Intoto's commitment to staying on the leading edge of security technology," said Doug Makishima, vice president of marketing at Intoto. "Our OEM (Original Equipment Manufacturer) The rebranding of equipment and selling it. The term initially referred to the company that made the products (the "original" manufacturer), but eventually became widely used to refer to the organization that buys the products and customers, which represent some of the biggest names in networking, demand that we keep our iGateway platforms at the forefront of the industry so they can compete effectively without having to draw on their own development resources."

In addition to supporting the IKEv2 standard, Intoto's iGateway EX product line includes advanced features such as Certificate Authentication with certification chaining and cross certification support, Liveness Check for detection of dead peers, Extended Sequence Number (ESN (Electronic Serial Number) A unique identification number built into a cellphone for security purposes. ) needed in ultra-high volume data networks, and NAT-Traversal for working through enterprise networks with Network Address Translation (NAT (Network Address Translation) An IETF standard that allows an organization to present itself to the Internet with far fewer IP addresses than there are nodes on its internal network. ). Furthermore, iGateway EX with IKEv2 supports Extensible Authentication Protocol Extensible Authentication Protocol, or EAP, is a universal authentication framework frequently used in wireless networks and Point-to-Point connections. It is defined by RFC 3748. (EAP) with EAP-SIM EAP-SIM Extensible Authentication Protocol method for GSM Subscriber Identity Modules support and IPsec Remote Access Client and Server (IRAC/IRAS) for private IP configuration management.

Pricing and Availability

The iGateway EX SecureEnterprise, iGateway EX SecureSME, and iGateway EX SecureEnterprise with IKEv2 functionality is now available. The stand-alone iGateway VPN module with IKEv2 is also available now. Pricing available upon request.

About Intoto

Intoto is the leading software Original Design Manufacturer (ODM (Original Design Manufacturer) A contract manufacturer that uses its own designs and intellectual property (IP). See contract manufacturer. ) of integrated security, wireless and voice software platforms for networking and communications equipment. Intoto has more than 100 designs with high-volume global Original Equipment Manufacturers (OEMs) serving the residential, small business, and enterprise markets. Intoto's complete, integrated software platform solutions, which support all major hardware platforms and operating systems, enable OEMs to reduce development costs and speed time-to-market for faster return on investment and increased market share. Intoto boasts in excess of 1 million installations of its technology in U.S., European and Asia-Pacific markets. Founded in 1998, Intoto is headquartered in Santa Clara, Calif. More information is available at http://www.intoto.com or by calling +1 (408) 844-0488.

(C)2004 IntruPro, ParentalCQ, and Accelerate Innovation are trademarks or registered trademarks of Intoto, Inc. in the United States and/or other countries. Other brand and product names are trademarks or registered trademarks of their respective holders. Information is subject to change without notice. All rights reserved.

COPYRIGHT 2005 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Date:	Feb 15, 2005
Words:	823
Previous Article:	Portal Software Deploys Everdream Hosted IT Services to Help Manage Mobile Workforce; Everdream Chosen for Expertise, Cost Savings and...
Next Article:	Intoto's Advanced Enterprise Software Platform Deployed in NETGEAR ProSafe VPN Firewall Routers.

Related Articles
HITACHI SYSTEMS CHOOSES SSH IPSEC TOOLKIT FOR VPN DEVELOPMENT.(Company Business and Marketing)
Making Sense Of VPN Systems, Standards, And Protocols.(Internet/Web/Online Service Information)
Cavium Networks NITROX Lite security macro processors slash cost for SOHO and SME security markets.
IPSec or MPLS: understanding technology choices in virtual private networks. (Internet).
REPEAT/Intoto Inc. Announces the Availability of its iGateway VPN Software Platform Utilizing VPN Security Processor PCI Cards from Broadcom.
Unprotected wireless--a new threat.(Teach-In)
VPNs and wireless gateways vie for the heart of WLAN security.(Internet)
SSL VPN gateways: a new approach to secure remote access.
SafeNet Announces QuickSec IKEv2 Toolkit.
Mocana Announces Support for IKEv2, EAP-IKEv2, and MOBIKE Protocols.