Securing the Link

To meet a federal mandate to reduce welfare rolls, the Florida Department of Labor and Employment Security needed to find a way to transmit data securely with new privatesector partners while allowing them access to internal databases.

To meet a federal mandate to reduce welfare rolls, the Florida Department of Labor and Employment Security needed to find a way to transmit data securely with new private-sector partners while allowing them access to internal databases.

Officials turned to a burgeoning security technology called virtual private networking, which uses the Internet or another public backbone to carve out a private passageway or tunnel by using encryption and authentication. The state has become one of the first to launch a statewide VPN, a technology many state and local governments are eyeing to secure data transmissions while whittling communication costs.

Using VPN client/server software from V-One Corp., the labor department has linked more than 350 partners to enable them to work together to train welfare recipients and help them find jobs, said Bob Endress, the department's chief technology officer.

The department, which operates a frame-relay network, turned to VPN technology after struggling to find a way to securely link business partners without requiring them to purchase costly frame-relay connections, he said.

"How do we get these external partners that we now have...with all their own separate networks connected to our network...and be able to maintain the confidentiality?" Endress said, stating the question facing his department.

Private-sector partners download V-One client software from the department's World Wide Web site. This software is used to encrypt data communications transmitted via the Internet and to authenticate that a partner is authorized to access information on internal labor department networks. Labor officials have been able to absorb the cost of the client software-about $70 to $100 per year per partner. It would have cost several hundred dollars a month per partner for frame-relay connections, Endress said.

The department's server limits external user access to specific networks required for the welfare recipient job assistance. "It keeps people from being able to roam around your network," he said. "It creates a virtual tunnel directly to the application that they're going to access."

Florida is using VPN technology to connect with external business partners in what is called an extranet VPN. The technology also can be used for a remote-access VPN, which connects telecommuters or other mobile users to an agency network, or an intranet VPN, which connects fixed locations, such as branch offices.

In a VPN scenario, a remote user or a branch office employee dials into a service provider and establishes a link to agency headquarters over the Internet or the provider's network. The user then authenticates himself for authorization to gain access to internal agency servers.

Because the technology can allow state and municipal governments to dispense with costly modems and dedicated leased lines, it can drastically reduce communications costs. David Dawson, chief executive officer of V-One, estimated that government agencies can save 30 percent to 40 percent on data communications costs.

"Virtual private networking technology has one of the highest return on investment of any technology to come along in recent history," Dawson said. "It's the type of technology that literally pays for itself before the installer is out the door."

Officials in San Antonio are evaluating VPN technology to replace the costly "800" numbers used by traveling workers to dial into the city's networks, said Karl Wahala, senior system programmer for the city. VPN capabilities would be extended to about 50 traveling city employees and those who work from the Texas city's branch offices in Mexico and Washington, D.C., he said.

"We have to have a secure way for them to get in and do their business...without incurring huge 800 costs," Wahala said. "For road warriors, it's hard to say what they accrue to 800 costs. We know it's a lot. Our 800 charges go away altogether [with VPN technology]."

City officials are interested in finding a solution that would support VPN, secure Web transactions and secure e-mail, he added.

In addition to data communications cost savings, government agencies using VPN technology do not have to have multiple infrastructures, such as frame relay or dial-up modem banks, said Tony Rosati, vice president of marketing and business development of TimeStep Corp.

"[VPN is] basically an Internet Protocol infrastructure.... It's very cheap to deploy," Rosati said. "The state and local networks are like extranets. It isn't just one person's network. The cost is usually shared between different organizations in government. All you need is an IP connection...connect each deploying standard VPN gear that is interoperable, and it should all work together."

For many state and local governments, managing and maintaining a VPN deployment can become a challenge, according to Jeff Barnell, vice president of marketing at VPNet Technologies Inc. Because of the dynamic nature of the technology, the typical network management scenario cannot routinely handle a VPN, he said.

"The technology is quickly outpacing the resources and knowledge of the Internet employees," Barnell said. "There's no reason to try to cobble together your own boxes."

VPNet has begun to offer fully outsourced VPN services, with the company designing a VPN implementation, installing it and managing and upgrading it for a monthly fee. Barnell said that because users do not own the equipment, they can start small and then move to technology with higher speeds and better performance as they scale up the size of the VPN without an investment in new equipment.

One of the drawbacks to VPN is that the technology depends upon the Internet or another public backbone. That means applications running over a VPN could be hampered by potential bottlenecks and other service-related problems that still plague the Internet.

Barry Smith, information technology director for Gaithersburg, Md., noted that although he is interested in VPN technology for a variety of applications, he will not rely on VPN technology for any time-sensitive applications.

However, the city plans to begin testing VPN technology to relay data on handheld wireless devices back to city hall, Smith said. For example, building code inspectors could key in notes from the field via a wireless device and transmit it to the office via a VPN, Smith noted.

"It would increase productivity because they wouldn't have to come back and key all that in," he said. "It would increase customer service because it would be more accurate information."

In addition, Gaithersburg officials may use the technology to enable police officers to use VPN via wireless devices from their cars to submit forms and check those forms against criminal information in police databases.

To combat the random nature of the quality of service provided by the Internet, Intel Corp. offers a solution that provides dial-up backup to VPN that can be managed from one software package.

"By installing a combination of VPN and direct-dial remote access...if there were some critical records that needed to be uploaded and an Internet connection were to go down, whoever is trying to send that information can establish a different connection," said Stephen Proctor, Intel VPN product manager.

Heather Harreld is a free-lance writer based in Cary, N.C.

***

How It Works

VPN technology is based on tunneling technology, which is used to transfer data between two similar networks over an intermediate network. One type of data packet encloses or encapsulates another data packet to shroud it from potential electronic eavesdropping, thus creating a private tunnel over a public backbone. The packets are encrypted so that the data is protected from an unauthorized user who may try to capture it during transmission.

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.