Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“The knight slew the dragon,
The lady was gay,
They rode on together,
Away, away.”
—Unknown. This Is the Key (l. 38–41)
“I live in my house as I live inside my skin: I know more beautiful, more ample, more sturdy and more picturesque skins: but it would seem to me unnatural to exchange them for mine.”
—Primo Levi (1919–1987)