|
Written by Administrator
|
|
Friday, 24 July 2009 08:48 |
|
Page 14 of 19 Link versus end-to-end encryptionLink encryptionLink encryption (sometimes called link level or link layer encryption) is the data security process of encrypting information at the data link level as it is transmitted between two points within a network. Each link along the data path may use a different key or even a different algorithm for data encryption. The process is repeated until the data has reached the recipient.
If the communications link operates continuously and carries an unvarying level of traffic, link encryption defeats traffic analysis.
Link encryption takes place in the lowest protocol layers (layers 1 and 2 in the OSI model). Because the process protects the message in transit, link encryption is very useful in situations where the security of the transmission line is not assured. However, because the message is decrypted at each host in the transmission path, vulnerability can arise at a link when the message must be transmitted between hosts that are not known to be secure.
Link encrytion is not feasible over the public network like Internet, because intermediate links are neither accessible nor secure.
Bulk encryption It refers to encrypting a large number of circuits at once, after they have been multiplexed. End-to-end encryptionEnd-to-end encryption encrypts clear data at source with knowledge of the intended recipient, allowing the encrypted data to travel safely through vulnerable channels (eg. public networks) to its recipient where it can be decrypted (assuming the destination shares the necessary key-variables and algorithms). End to End encryption is usually initiated at the application layer of the originating computer.
|
|
Last Updated on Friday, 28 August 2009 05:01 |
Tabulated comparisons of the two cryptography, really help to remeber...
thanx
keep up the good work