Entrust's announcement, made just days before the Network+Interop trade show in Atlanta, headed a slew of VPN announcements today, including a VPN appliance from Sonic Systems, a VPN add-on card from Red Creek Communications, and Altiga Networks' high-speed VPN offering.
Entrust also said it supports multiple VPN protocols so its PKI software works with most VPN hardware and software vendors, 15 altogether. That makes it easier to set up secure connections over the Net even when each end uses VPN technology from different vendors.
"The Entrust PKI can support virtually all environments for VPN vendors, all off of one system, and that is unique in the industry," Entrust CEO John Ryan said, outlining Entrust's VPN strategy. "We have worked with virtually every vendor in the wide area network--firewalls, routers, and VPN gateways. They basically can assure that Entrust will work with any boxes they have in their setting."
VPNs, which set up secure, encrypted connections over the public Internet, are attractive to network managers because VPNs are much cheaper than using leased lines for secure private networks.
A PKI system can be used to issue and manage digital certificates, which vouch for the identity of a person or device online to the devices at each end of a VPN's encrypted tunnel through the Internet. The PKI also can manage cryptographic keys or ciphers that VPN devices use to encrypt and decrypt data and to apply digital signatures.
"We are more than a vendor who can put certificates in the devices--we help enable this encrypted session to become a reality," Ryan added. He said today's announcement puts Entrust ahead of certificate authority rivals VeriSign, GTE CyberTrust, and Baltimore Technologies, an Irish firm that entered the U.S. market last month.
Entrust's new product, VPN Connector, is now available. It's a small add-on to Entrust's PKI system that facilitates handling certificates for VPN gateways. It works with VPNs from 3Com, Cisco Systems, Hi/fn, Network Associates Radguard, Red Creek, and VPNet.
Entrust's PKI software now supports the following VPN protocols: IPSec (IP Security), IKE, PKCS (Public Key Cryptography Standard) 7, PKCS 10, and Cisco's Certificate Enrollment Protocol (CEP).
Entrust named VPN vendors that have used the Entrust/IPSec Negotiator Toolkit to make their products work with Entrust's PKI. They include Ascend, Axent/Raptor, Bay Networks, Check Point Software, Hewlett-Packard, Milkyway Networks, Nortel Networks, TimeStep, Shiva, and V-One.
By year's end, Entrust will release its Access product, based on technology licensed from Check Point. Access is designed for companies that don't have a PKI but want a gateway server to authenticate users and generate certificates. Access will be a standalone version of Check Point's technology.
In other VPN news: