In the DoD there is a strong requirement for 2-factor authentication in the network. For systems and workstations they use a successful implementation with Public Key Infrastructure (PKI) and a DoD common access card (CAC) which has a client certificate. The user has a PIN; therefore, 2-factor. Nothing like this exists for network devices (routers, […]
Secure and Affordable 2-factor authentication: Yubikey Read More »
FIPS 140-1 and FIPS 140-2 had quite a bit of longevity. However, FIPS 140-3 is almost here. Based on previous NIST standards development processes, the 140-3 standard will most likely have a publication date of a year from now. So sometime in February/March 2014, FIPS 140-3 will be the dominate federal crypto module certification. Not
FIPS 140-3 is Coming: Time to Plan Read More »
A colleague brought up a very important issue in regards to vPC survivability. There are Nexus vPC Peer-Link interface options. Take a look at the below diagrams. As you can see, we have a big problem here with survivability that can often be overlooked: if the one single vPC layer-3 peer-link interface goes down for
Nexus vPC Peer-Link Interface Options Read More »
Software Defined Networking (SDN) is the new buzzword in IT today. It has become synonymous with things like cloud, cyber security, CDN, and yes even IPv6. The curious thing is that they are all inter-related. Open Flow, which is a specification of the Open Network Foundation, has defined this new phenomenon as something that, “enables
SDN, Open Flow and Cisco ONE: A First Look Read More »
We just posted a white paper on our website that discusses the various reasons why getting commercial IT products tested at the Joint Interoperability Test Command (JITC) for DoD Unified Capabilities Requirements (UC) Approved Products List (APL) certification is very important. We also illustrate the advantages it gives product vendors selling in the U.S. Federal IT
The Importance of DoD UC APL Certification Testing Read More »
I’m sure everyone has heard the headlines about the U.S. House of Representatives’ bill HR-3261 Stop online Piracy Act and the Senate Bill equivalent; Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act of 2011 (PROTECT IP). Well it’s more than just hyperbole. However, I’ll start with what these bills actually say, what
Why SOPA and PROTECT-IP will kill the U.S. Internet: An Open Letter to Congress Read More »
John Spence from Nephos6 had a great article discussing IPsec and its place in the newest draft of the IPv6 Node Requirements RFC. They offer a good opinion and perspective of the current state of the industry on IPv6 adoption, and how vendors (especially of small appliances) feel about adding IPsec to their IPv6 stack. The
IPv6 IPsec – Reviving the Debate Read More »
It’s actually just as easy as that. If you are looking to create a fully functional router and/or server lab used for training classes or a configuration test lab, and looking to do it with the smallest footprint ever, then read on! The Laptop I started off trying to find a laptop that would work
Create a Dynamips/Dynagen lab with just a Laptop & a Switch Read More »