|
Security/Privacy
IPsec
Internet Protocol security extensions to IPv4; required for IPv6. A protocol for
negotiating encryption and authentication at the IP (host-to-host) level. SSL
secures only one application socket; SSH secures only a login; PGP secures only
a specified file or message. IPsec encrypts everything between two hosts
IPsec (Internet Protocol Security) is a developing standard for security at the
network or
packet processing layer of network communication. Earlier security
approaches have inserted security at the
application layer of the communications model. IPsec will be especially
useful for implementing
virtual private networks and for remote user access through dial-up
connection to private networks. A big advantage of IPsec is that security
arrangements can be handled without requiring changes to individual user
computers. Cisco has been a leader in proposing IPsec as a standard (or
combination of standards and technologies) and has included support for it in
its network
routers.
IPsec provides two choices of security service: Authentication Header (AH),
which essentially allows authentication of the sender of data, and Encapsulating
Security Payload (ESP), which supports both authentication of the sender and
encryption of data as well. The specific information associated with each of
these services is inserted into the packet in a header that follows the IP
packet header. Separate key protocols can be selected, such as the ISAKMP/Oakley
protocol.
Officially spelled IPsec by the IETF, the term often appears as IPSec and IPSEC.
Read more about it:
>> The IETF provides a
comprehensive list of papers about IPsec.
>>
Cisco, the network equipment maker, offers an IP Security Overview .
>>
Go to SearchSecurity.com for security-specific information on IPsec.
>>
Visit SearchNetworking.com for more information on IPsec.
|