IPSec vs. SSL VPNs. Which is the best solution for SMBs?

According to Stan Oien, security specialist at Network World, VPN technologies are ubiquitous enough to be utilized by the general rank and file. For SMBs however which is the best VPN to implement? SMBs with limited budgets, who don’t share sensitive data could opt for a standard VPN such as SSL because of cost and this technology is virtually free. These standard VPNs are also highly compatible with most web enabled applications and networks. Further they are simple to install and leverage firewall ports already opened to secure internet traffic enabling users to connect to a network securely via a web browser.

The next big thing is encryption. According to a recent study by the Ponemon institute, there has been an 8% increase in the average total cost of encryption key breaches year over year. If an SMB loses an encryption key or the key becomes corrupted, the SMB may lose access to all of the systems and data housed on the network. The worst case scenario is that the system becomes completely unusable unless it is re-formatted and re-installed. IDC reports that about 2.4 million companies in the US have some sort of branch office and as remote access continues to grow, so will the demand for SSL- especially for SMBs.


IPSec was probably one of the first VPNs that came in the scene in the late 1990s and established itself as a standard to provide secure network-layer connectivity over unsecure IP networks especially the internet. Although it is less expensive, it is a complex architecture. The more sites that connect to each other, the more secure links or tunnels need to be defined and maintained. If IPSec is used for remote access, it requires software on every remote machine that must be installed and maintained unlike the SSL.


Whether it is IPSec or SSL, NetEnrich Secure NOCs offer a highly centralized solution to securely manage a customer’s network. Virtual Private Management Gateway, our security appliance ensures a secure data transfer between the customer’s IT team and the NOC with robust encryptions using both IPSec and SSL which makes any kind of decryptions a complete impossibility.


Also, the traditional VPN or Citrix farms for remote access as utilized have met with limited acceptance in the market due the following problems.


1) The access control is not granular. For example, the time duration and level of access cannot be restricted. As a result, there are security concerns.


2) The remote access cannot be audited in a detailed fashion, which is a compliance violation.


NetEnrich VPMG solves these problems with a unique set of secure remote access control technologies that enforce process compliance at a very granular and highly auditable level.


Click here to download our whitepaper on VPMG.