IPsec
Security Architecture for IP
IPsec is a mechanism for actualizing the integrity and confidentiality of IP packets by using encryption technology.
IPSec consists of the following 3 protocols.
-
-
AH (Authentication Header)
・Authentication of data
・Authentication of the packet transmission source
・Without the encryption function -
ESP (Encapsulation Security Payload)
・Authentication of data
・Authentication of the packet transmission source
・With the encryption function -
IKE (Internet Key Exchange)
・Securely exchange the private key information.
-
Also, there are 2 types of VPN, IPsec-VPN and SSL-VPN. The features of each are shown below.
Features of IPsec-VPN
-
- Authentication and encryption performed at the network layer.
- Accessible with dedicated client software.
- IP addresses are used for authentication.
Features of SSL-VPN
-
- Authentication and encryption performed at the session layer.
- Accessible with a Web browser.
- Basically, usernames and passwords are used for authentication.
Also, in the AG/AR series, IPsec-VPN is adopted.
Comments
0 comments
Please sign in to leave a comment.