Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

AES

Anyone deployed AES in a large scale VPN rollout? If so, had any issues, caveat's? Wondering if I should stick with 3des, or step it up a notch and go with AES. All routers are deployed with code that supports it: 12.2(13)t1. Just wondering if its ready for prime time yet.

1 REPLY
Community Member

Re: AES

Couple of points:

Most of the current crypto accelerators can't handle AES

If you are the amongst the first to use a new feature, then you're really part of the extended beta test

AES has advantages over 3des, but are you more likely to be compromised because because someone cracked your crypto on the fly using high speed factoring, or because they got physical access to your router and retrieved the pre-shared keys?

99
Views
0
Helpful
1
Replies
CreatePlease to create content