Q&A On SSL VPNs, Part Two: Joerg Hirschmann
Q: What are the core strengths of SSL VPN, and when might enterprises choose to go with this protocol over IPsec VPN?
Joerg Hirschmann: The pre-installed, SSL approach is ideal for situations in which one doesn't require transparent connections for secure remote access. For instance, SSL VPN is an optimal solution when enterprises must grant limited access to external associates or partners needing connections only to specific applications (e.g. web-based) or administrative access to specific machines through RDP or SSH sessions. However, the ideal secure remote access solution takes a hybrid approach combining the strengths of both SSL and IPsec.
Q: What about choosing to go with software solutions versus hardware appliances?
Joerg Hirschmann: A software solution is the ideal fit for a virtualized central environment, whereas appliances are usually a better fit in branch offices or a smaller environment without virtualization in place.
If you have any questions on VPNs, the IPsec and SSL protocols or anything else related to secure remote access, send them to email@example.com.
Joerg Hirschmann is CTO at NCP engineering GmbH.