|
|
|
To eliminate man-in-the-middle attacks on the SSL link used for the secure private tunnel, certificates are used to provide endpoint authentication. This means that both the routing gateway and its remote parent server must verify the identity of the machine they are trying to connect to. The connection is terminated if either machine cannot provide authentication. Once identities are established, secure encryption/decryption is performed on all data passing through the tunnel.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |