Microsoft Point-to-Point Encryption

Microsoft Point-to-Point Encryption (MPPE) encrypts data in Point-to-Point Protocol (PPP)-based dial-up connections or Point-to-Point Tunneling Protocol (PPTP) virtual private network (VPN) connections. 128-bit key (strong), 56-bit key, and 40-bit key (standard) MPPE encryption schemes are supported. MPPE provides data security for the PPTP connection that is between the VPN client and the VPN server.

MPPE alone does not compress or expand data, but the protocol is often used in conjunction with Microsoft Point-to-Point Compression which compresses data across PPP or VPN links.

Negotiation of MPPE happens within the Compression Control Protocol (CCP), a subprotocol of PPP. This can lead to incorrect belief that it is a compression protocol.

RFC 3078, which defines this protocol, defines RC4 with either 40-bit or 128-bit key lengths as the only encryption options with this protocol.

External links

RFC 3078 (the protocol), RFC 3079 (deriving initial session keys)
MPPE, Microsoft Point-To-Point Encryption Protocol

Virtual private networking

Communications protocol	SSTP IPsec L2TP L2TPv3 PPTP Split tunneling SSL/TLS (Opportunistic: tcpcrypt)

Free software	Cloudvpn FreeS/WAN Libreswan n2n OpenConnect OpenIKED Openswan OpenVPN Social VPN SoftEther VPN strongSwan tcpcrypt tinc VTun

Vendor-driven protocols	Layer 2 Forwarding Protocol DirectAccess

Proprietary software	Avast SecureLine Check Point VPN-1 Cisco Systems VPN Client Hamachi Microsoft Forefront Unified Access Gateway

Risk Vectors	Content-control software Deep content inspection Deep packet inspection IP address blocking Network enumeration Stateful firewall TCP Reset VPN blocking

This article is issued from Wikipedia - version of the 9/15/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.