MMC Certificate Authority
There are various functions related to the certificate authorities and it would be beneficial to discuss about the three most used certificate authorities over here.
Trusted Root certification authority – This CA provides the facility to automatically install the access permissions in the root folder and also provides an internal authentication.
Intermediate certification authority –This type certification authority is shared between multiple users of the organization and therefore one particular application can be authorized on multiple machines with the help of this type of certification authority.
Third party Root certification authority – It is important to have a trusted relationship with every third party that is dealing and communicating, therefore this type of certification authority provides an access to the third parties automatically in case if they are trusted partners and are supposed to be authenticated.
IPSec is a framework which provides the definition of a secure communication within a network and helps to maintain confidentiality, data integrity and authentication in the various layers of a network. IPv4 and IPv6 are the environments where IPSec provides security services for the communication that takes place. The primary objective of IPSec is to ensure interoperability, cryptographic security and high quality communication between the various layers. The security services provided by IP sec involve various facilities like encryption, data origin authentication, replay protection, limited traffic flow confidentiality, connectionless integrity and effective access control.
The three main advantages of IP sec are that it supports various operating systems and is the best solution for a VPN in order to maintain excellent data confidentiality. It is an open standard platform and therefore it provides interoperability between various devices. The disadvantage of IP sec is that it is not applicable in case of local host machines where an encrypted network is not available.
Ipv6 is a platform which is implemented using authentication header and ESP extension header, and this is considered an advanced security and the advantages that it does not require change in applications or networks and can be directly implemented. The communication that takes place after the implementation of this platform, is called a security associations and the platform provides secure internal network traffic with a wide area network or a local area network.
Authentication header, encapsulating Security payload, IP payload compression and Internet Key exchange are four basic features of IP V6 and these four features provided the facility to use cryptographic algorithms in order to conduct checks over the packages sent, performs encryption of packets, ensures packet compression and helps to negotiate the key security and secrecy respectively. Ipv6 is a very useful security tool for network communications and has a wide application across various important and secure federal networks.
