IPsec

IPsec

Security Architecture for IP

IPsec is a mechanism for actualizing the integrity and confidentiality of IP packets by using encryption technology.

IPSec consists of the following 3 protocols.

1. 1. AH (Authentication Header)
      

      ・Authentication of data
      ・Authentication of the packet transmission source
      ・Without the encryption function

   2. ESP (Encapsulation Security Payload)

      ・Authentication of data
      ・Authentication of the packet transmission source
      ・With the encryption function

   3. IKE (Internet Key Exchange) 

      ・Securely exchange the private key information.

Also, there are 2 types of VPN, IPsec-VPN and SSL-VPN. The features of each are shown below.

Features of IPsec-VPN

• • Authentication and encryption performed at the network layer.
  • Accessible with dedicated client software.
  • IP addresses are used for authentication.

Features of SSL-VPN

• • Authentication and encryption performed at the session layer.
  • Accessible with a Web browser.
  • Basically, usernames and passwords are used for authentication.

Also, in the AG/AR series, IPsec-VPN is adopted.