Question : dmz encryption

Hello
I am studying 3 tier structure dmz, thaz contains Presentation Layer(web servers), Business Logic Layer(Application), and Data Layer(database). I wonder if we need to establish encryption between the web server, and the mid layer! What protocol and encryption should be used? Can we use https to encrypt the connection between webserver and application server(the mid layer).
I appreciate your reply

Answer : dmz encryption

it depends too much on what you are using for your intermediate layer, but in general - yes, there is something ssl based that can serve. usually you will find that the intermediate layer is something like a tomcat servlet, addressable via https.

question on when you should or shouldn't bother depends on your attack model - if you have a "red" dmz (web facing) and then "green" dmz (filtered between both red and lan) under what circumstances do you expect the traffic from red to green to be "sniffable" without any prior compromise of either the "red" or "green" service hosts?

Random Solutions

D2k Triggers...

Restoring a SQL Server database

How to call a module function in Access 2000 database using VB query recordset?

Outlook 2007 Color Categories

What is hte best way to image 15 new computers the same

bat file help - how to do a backup

doubt in Memory map and IO map

Running Shell Script from a Oracle database trigger

How to deploy ssrs reports in a sharepoint portal?

Transfer SSIs packages and jobs to the new machine SQL server 2005