First page Back Continue Last page Overview Graphics
IPSec
Common Concepts - continued
- Biggest problem is the KEY problem
- Symmetric cipher key exchange
- How do you do it
- SneakerNET
- Decanting 32+ hex characters over the telephone!
- IKE - Internet Key Exchange
- ISAKMP
- Internet Security Association & Key Management Protocol
- Defines a two phase system of negotiation
- Phase One uses PSK (PreShared Keys) or x509 certs
- Phase Two sets up the actual connection SA(s)