Internet Key Exchange

                                               Internet Key Exchange

• Internet Key Exchange is a key management protocol standard used in conjunction with the Internet Protocol Security standard protocol.  


• It enhance IPsec by providing additional features along with flexibility. It uses the HMAC functions to guarantee the integrity of an IKE session. 


• When its session lifetime expires, a new Diffie-Hellman exchange is performed and the IKE SA is re-established. 


• The key management portion of IPSec involves the determination and distribution of secret keys. Oakley is refinement of Diffie-Hellman key exchange algorithm and recall that Diffie-Hellman involves the following interaction between two users. 


• The Oakley algorithm is characterized by four important features. And ISAKMP defines the procedures and packet formats for peer authentication creation and management of SAs and techniques for key generation. 


• All its payloads begin with the same generic payload header. 


• The lesson concludes with a discussion of Key exchange.

Keywords:

IKE    -    Internet Key Exchange

VPN    -    Virtual Private Network

ISAKMP    -    Internet Security Association and Key Management Protocols

DOS           -    Denial of Service

DOI            -    Domain of Interpretation