Featured Products by Lucent Technologies

Access Point™ QVPN Client™

QVPN Client™ is a Windows™ '95, '98, and Windows NT 4.0 compatible software product which provides Virtual Private Networking (VPN) capability to a desktop or laptop computer. Based on the latest industry-standard IPSec recommendations, QVPN Client allows secure Client-to-Gateway communication over TCP/IP networks, including the Internet. The security services offered by QVPN Client include confidentiality via encryption, packet integrity and authentication via keyed hash, and identity authentication via Digital Signatures and X.509 certificates exchanged during key negotiation.

Applications

QVPN Client enables "Road Warrior, Telecommuter, and Dayextender" communications back to the home office via the Internet or dial-in remote access servers (client-to-gateway). Internal secure communications across a LAN, WAN, or dial-up connection are also easy to accommodate. QVPN Client creates a Virtual Private Network when it operates on a shared, unprotected network.

Features

  • Full compliance with IPSec Standards including full support for:

    • Tunnel Mode or Transport Mode security
    • DES, 3-DES, MD-5, and SHA-1 algorithms
    • IKE (Internet Key Exchange using ISAKMP/ Oakley)
    • Extended Authentication

  • Compatible with PC Windows Communications devices such as LAN Adapters, Modems, PC Cards

  • Intuitive graphical user interface for configuring security policies and managing certificates

  • Easy to install and transparent to use

  • Compatible with virtually all Windows applications

QVPN Client enables secure remote communications
Figure 1 - Xedia's QVPN CLient enables secure remote communications


QVPN Client User Interface

QVPN Client includes an intuitive and powerful Graphical User Interface (GUI) which allows the workstation user or Security Officer to configure the security policy and manage certificates. The user interface is accessed via an icon in the "tray" portion of the Windows Taskbar. Aside from pro-viding access to these applications, the QVPN Client icon also gives a visual indication of the status of the IPSec connections — Bypass, Negotiating, or Secure.

QVPN Client Security Policy Editor
Figure 2: Security Policy Editor

The QVPN Client Security Policy Editor allows for configuration of security policies on a connection by connection basis. Each connection may be referenced by its IP address, a range of IP addresses, an IP subnet/mask, a Domain Name, an e-mail address, or a distinguished name. The user may configure connections to be Blocked, Non-secured (without protection), or Secured with ESP or AH transforms.

Connections not explicitly listed in the Security Policy table may be specified to be Blocked, Non-secured or Secured, using the "Other Connections" entry.

Other parameters which may be defined for each connection include its lifetime (expressed in seconds or bytes), encryption algorithm and authentication algorithm.


QVPN Client Certificate Manager
Figure 2: Certificate Manager

The QVPN Client Certificate Manager provides a means to manage and view the local user's certificates as well as the certificates for the trusted signers. The user may request local generation of a private/public key pair and a certificate request for an X.509 certificate from a Certificate Authority (CA) or from a Local Registration Authority (LRA).The private key is never exposed outside of the client application.

The Certificate Manager uses the standard PKCS#10 and PKCS#7 formats for exporting a Certificate Request and importing a signed certificate from the CA. The request and response are carried in standard disk file formats, e-mail messages or transferred over a network to and from the fulfilling CA if desired. QVPN Client also supports CRL retrieval using LDAP.


Specifications

Security Standards
  • IPSec Standards
  • AH (Authentication Header)
  • ESP (Encapsulating Security Payload)
  • IKE (ISAKMP/Oakley) key management
  • X.509 v3 certificates
  • FIPS PUB 46-1: Data Encryption Standard
  • RFC 1321: The MD5 Message Digest Algorithm
  • FIPS PUB 180-1: Secure Hash Standard
  • PKCS #7: Cryptographic Message Syntax Standard
  • PKCS #10: Certification Request Syntax Standard
System Requirements
  • PC compatible computer with a Pentium processor
  • Microsoft Windows 95/98 or Windows NT 4.0
    (with Service Pack 3 or later) Operating System
  • 18 MB hard disk space
  • 16 MB RAM for Windows 95/98 or 32 MB RAM for Windows NT
  • Internal/External Modem (non-encrypting) or network connection


About Us | Professional Services | Featured Products | Products Solution / Business Partners |
Network Security Tidbits | Place an Order | Online Credit Application | Events & Seminars 
Career Opportunities | Site Map

Network Systems Integration
Land-mail: 2245 First Street, Suite 202, Simi Valley, CA 93065
Phone 1-805-579-1030 - Fax 1-805-527-9243
e-Mail: info@nsi-solutions.com
About Us Events and Seminars Careers Careers Site Map Professional Services Featured Products Other Products Network Security Tidbits Place an Order Online Credit Application