NetScreen Global PRO Policy Manager IPSec Tunnel Security Configuration Weakness

An issue has been reported in NetScreen Global PRO Policy Manager that may result in weaker than intended encryption routines used in IPSec tunnels.

The issue is due to default definitions for IPSec used by Global PRO Policy Manager. Specifically, phase 1 and phase 2 proposals using AES encrytion alogrithms will result in VPN configurations using DES encryption instead of the expected AES128.


 

Privacy Statement
Copyright 2010, SecurityFocus