Versions Compared

Version Old Version 3 New Version 4
Changes made by

Jean-luc KRIKER

Jean-luc KRIKER

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.




Internet Key Exchange
IKE Version 1 


Phase 1 

Propose : Encryption and Authentication Algorithms

Initiator and respondor: Diffie-Hellman key exchange process  (send Public key + Random number )

            Pre-shared key

            Private Keys ( exchange using PKI ) 

Use the encryoted communication channel

  • Main Mode: 
  • Aggressive Mode:  
Phase 2
IKE Version 2 



Tunnel Mode ( most used )
  • encapsulation of the layer 3 / original packet
  • With ESP(+AH) or just AH



Transport Mode encapsulation of layer 4of the original packet


















...