Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“Every revolution was first a thought in one man’s mind, and when the same thought occurs in another man, it is the key to that era.”
—Ralph Waldo Emerson (1803–1882)
“If mass communications blend together harmoniously, and often unnoticeably, art, politics, religion, and philosophy with commercials, they bring these realms of culture to their common denominator—the commodity form. The music of the soul is also the music of salesmanship. Exchange value, not truth value, counts.”
—Herbert Marcuse (1898–1979)