<div>
<div class="content wysiwyg-content">
We are building a (non HTTP) Java Application server which a client can connect to thru the internet. We are looking into PKI tokens for authentication, but I wish to know if there are alternatives in securing the channel &nbsp;besides using VPN. Something that can offer SSL like security but for non-web applications.
</div>
</div>


We are building a (non HTTP) Java Application server which a client can connect to thru the internet. We are looking into PKI tokens for authentication, but I wish to know if there are alternatives in securing the channel  besides using VPN. Something that can offer SSL like security but for non-web applications.

securing client/server communications

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.