Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
879
Views
0
Helpful
1
Replies

Site2Site VPN 3DES or AES

J_Vansen_S
Level 3
Level 3

‎03-12-2011 11:46 PM

Hi all;

I have 2units of ASA5510 with 3DES-AES license. One is to be deployed in HQ another unit at remote site.

I have been using the asdm VPN IPSec wizard to perform the configuration. I would like to know the recommended

Labels:
0 Helpful
1 Reply 1

sean_evershed
Level 7
Level 7

‎03-13-2011 01:22 AM

Do you mean is it recommended to deploy 3DES or AES? I think both are valid choices depending on your needs

A good reference for comparing 3DES to AES can be found here, the CCNA Security Exam guide

http://www.ciscopress.com/bookstore/product.asp?isbn=1587202204

See page 451, it states that:

"AES does run faster than 3DES on comparabable hardware....this is especially true when pure software encryption is used."

However the disadvantage of AES in comparison to 3DES is that it is a relatively new encryption algorithm.

"..  a more mature algorithm is always more trusted. That being the case,  3DES represents a more conservative yet more trusted choice in terms of  strength, because it has been analysed for nearly 35 years."

0 Helpful
Customers Also Viewed These Support Documents