ESP (Encapsulating Security Payload) Transport Mode
ESP Transport mode is typically used for host-to-host VPNs or for global Internet users. In this mode,
only the data portion of the original IP datagram is encrypted. Like ESP mode, ESP Transport mode uses
56-bit or 168-bit Triple DES.
RavlinSoft also support Authentication Header (AH) Transport mode and Authentication Header (AH) Tunnel mode. These modes use strong authentication to secure IP datagrams without encrypting the data payload. They use IPSec- standard authentication and anti-replay, plus hashing, to ensure that the data stream is not modified.
Encryption-in-Place (EIP) Mode
EIP Mode is a RedCreek proprietary secure VPN technology. Although EIP mode is not part of the IPSec
standard, it combines high speed with all levels of encryption.
In EIP mode, only the payloads of IP datagrams are encrypted. Like ESP mode, EIP mode can use 56-bit or 168-bit Triple DES.
EIP Mode is typically used when network speed and performance are the most crucial considerations, as in trusted environments (such as corporate intranets) or where large multimedia development is taking place.
Anti-Replay Service
RavlinSoft uses IPSec anti-replay services to prevent intruders from inserting rogue packets into a data
stream. With anti-replay service, each IP datagram passing within the secure association is tagged with a
sequence number. On the receiving end, each datagram's sequence number is checked to see if it falls
within a specified range. If an IP datagram tag number falls outside of the range, the datagram is
blocked.
Event Messaging Support
RavlinSoft also supports Syslog Event Monitoring.
Unlimited Security Profiles
RavlinSoft's profiles feature provides for effectively unlimited client configurations. Simply select any
profile and click apply to initiate a new Security Association. RavlinSoft's Security Profile Wizard
provides a fast way to configure the client for any secure connection.
Low Cost of Ownership
Preserves investments in existing network hardware, software, and experience by working with existing dial-up lines and network infrastructure.
Provides significant network cost savings by ensuring secure communications and data privacy over public networks like the Internet.
Delivers a breakthrough price/performance model for software encryption products.
Standards Based
Ensures information privacy using full 56-bit DES and 168-bit Triple DES (Data Encryption Standard).
Uses X.509 v.3 digital certificates.
Verifies the sender's identity with Digital Signature Standard (DSS) and Secure Hash Algorithm (SHA) protocols.
Establishes and maintains secure communications using the IPSec mandatory Internet Security Association and Key Management Protocol (IKE).
Provides encapsulated tunneling for integrity and confidentiality of IP datagrams, through the IP Encapsulating Security Payload (IPESP) tunneling mode protocol.
Ravlin RADIUS Authentication
Ravlin RADIUS Authentication is a feature for the Ravlin 5100 that lets customers use RADIUS servers for authentication.
Support of Unique Digital Certificates
RavlinSoft uses an X.509 certificate for authentication by the Ravlin hardware devices.
Strong User Authentication and Policy Management with X.509 v.3 Digital Certificates
Importing an independent vendor's unique X.509 v.3 digital certificate into the RavlinSoft client allows
organizations to add stronger policy enforcement and access privileges to individual users via certificate
authorities.
Customer Support/Service
RedCreek Communications, Inc. believes that our customers deserve lasting value and continuous
satisfaction with RedCreek products. Because of this belief, RedCreek, in participation with its VARs,
offers innovative support programs to assist with installation and configuration of Ravlin products.
Please reference RedCreek's Customer Support Center.
