IPSec

IPSec (Internet Protocol Security)

A Layer 3 protocol that defines encryption, authentication, and key management for TCP/IP transmissions. IPSec is an enhancement to IPv4 and is native to IPv6. IPSec is unique among authentication methods in that it adds security information to the header of all IP packets.

Some IPSec applications include:

- VPNS (router to router) and Secure Remote access (connects an individual to router)

Internet Key Exchange (IKE)

A protocol that provides the authentication material used to create the keys exchanged by ISAKMP during peer authentication in IPsec. Also sometimes referred to as IPsec Key Exchange.

IPSec transport mode

IPSec encrypts just the IP payload, leaving the IP packet header unchanged so it can be easily routed through the internet. Typically for end-to-end communication

IPSec

Internet Protocol Security. Used to encrypt traffic on the wire and can operate in both tunnel mode and transport mode. It uses tunnel mode for VPN traffic. IPsec is built into IPv6, but can also work with IPv4 and it includes both AH and ESP. AH provides authentication and integrity, and ESP provides confidentiality, integrity, and authentication. IPsec uses port 500 for IKE with VPN connections.

IPSec tunnel mode

One of two modes for IPSec. It encrypts the entire IP packet and must add an entirely new IP packet that has the encrypted packet as well as the IPSec AH or ESP packets. Typically used for router-to-router, or firewall-to-firewall communication