|
|
 | | |  | Dynamic Management of the IPsec Parameters: The IKE Protocol |  |
 |
 |
Access to the content |
|
 Beginning of the presentation
 PDF version [305KB]
|
 |
|
Description |
|
Introduction to the IKE protocol.
Although it is possible to manually enter all the parameters needed for IPsec operation on the various devices, this approach is limited both in security and scalability. As a consequence, the IPsec working group has developed a protocol to dynamically manage the IPsec parameters. The resulting protocol, formerly known as ISAKMP/Oakley, has been renamed IKE (Internet Key Exchange) and focuses on two things: authenticated key exchange and management of the security associations in general. This protocol is rather complex and has many options and modes of operation which provide different features. This talk will introduce the basic concepts of key management and give an overview of IKE.
|
|
|
Context & Dates |
|
Talk made during the IPsec'99 seminar organised by Upper Side
, on
27 October 1999.
|
|
|
Author |
|
Ghislaine Labouret |
|
|
Type |
|
20 slides
[
-
]
PDF version, with notes [305KB]
|
|
|
Abstract &
Table of content |
|
Flyleaf
Introduction
Agenda
1. Key Management Concepts
Keys lifetimes and PKIs
Key Exchange Protocols Properties
Diffie-Hellman
2. Key Management for IPsec
Historical Reminder and Various Available Protocols
IKE Overview
Interactions Between IKE and the IPsec Mechanisms
3. IKE Internals
Course of the protocol
Phases and modes
Phase 1 - Main Mode (1) (simplified)
Phase 1 - Main Mode (2) (simplified)
Phase 1 - Main Mode (3) (simplified)
Phase 1 - Aggressive Mode
Phase 2 - Quick Mode
For Further Info
|
|
|
Related documents |
|
 | IPsec
| |
Documents Documents on IPsec @hsc.fr [ ]
![[Course]](/gif/icone.formations.png)
IPsec
Data Exchanges Security: IPsec, SSL, SSH
![[Presentation]](/gif/icone.supports.png)
Feedback from the ETSI IPsec over IPv6 Interoperability Tests [6 December 2002 - ]
IPsec Interoperability [28 March 2002 -  ]
![[Techno-watch]](/gif/icone.veille.png)
IPsec 2001 [29 October 2001 - ]
IPsec 2001 - IKE Interoperability Demonstrations and Tests [October 2001 - ]
IP VPN with IPsec tunnels [12 September 2001 - ]
IP filtering and IPsec in Windows 2000 [7 September 2001 - ]
IPsec Overview [20 June 2001 - ]
IPsec interoperability [6 March 2001 - ]
![[Tip]](/gif/icone.breves.png)
How to configure an IPsec tunnel on an agency Cisco router, with dynamic addressing and an ISDN line [5 December 2000 - ]
IPsec 2000 - IKE Interoperability Demonstrations and Tests [November 2000 - ]
The Different OpenSource Implementations of IPsec [27 October 2000 - ]
Network encryption: IPsec, SSL, SSH [26 September 2000 - ]
Network Encryption: IPsec, SSL, SSH [26 April 2000 - ]
IPsec: from Fundamentals to the IKE Protocol [21 March 2000 - ]
Directories, PKIs, IPsec VPNs and certificates: global security at last? [13 March 2000 - ]
Network Security with Linux: SSL, IPsec, SSH [1 February 2000 - ]
Résultats de tests d'interopérabilité IPsec réalisés par HSC [29 October 1999 - ]
Encrypted tunnels with Linux [18 June 1999 - ]
Network security with IPsec [3 June 1999 - ]
![[Article]](/gif/icone.articles.png)
Network Security with IPsec [March 1999 - ]
Key management for IPsec [14 January 1999 - ]
IPsec: a technical overview [December 1998 - ]
IPsec and key management [3 November 1998 - ]
|
|
|
|
Copyright |
|
© 1999, Hervé Schauer Consultants, all rights reserved. |
|
|
