|Read this whole guide offline with no ads, for a low price!|
Use coupon code "certiguide" to save 20%!
|Need more practice? 300 additional Security+ questions!|
|Get It Here!|
IPSec and Encryption
Specific encryption technologies
used by IPSec include:
- Diffie-Hellman key exchange between peers on
a public network (this is discussed in more detail in chapter 4)
- Public key cryptography for signing the Diffie-Hellman
exchanges to guard against identity-spoofing and man-in-the-middle attacks
- Standard algorithms such as DES for data encryption
- Keyed (HMAC161) and non-keyed (MD5, SHA) hashing for packet authentication
- Signed digital certificates used to provide proof
IPSec and Diffie-Hellman
IPSec uses Diffie-Hellman key exchange to communicate key data without requiring the actual keys to travel across the network, and public key cryptography to sign the key exchange transaction packets, to ensure their integrity and origin.
162. White Paper IPSec Executive Summary, Cisco Systems, http://www.cisco.com/warp/public/cc/so/neso/sqso/eqso/IPSec_wp.htm
|If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!|
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.