Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“Power, in Case’s world, meant corporate power. The zaibatsus, the multinationals ..., had ... attained a kind of immortality. You couldn’t kill a zaibatsu by assassinating a dozen key executives; there were others waiting to step up the ladder; assume the vacated position, access the vast banks of corporate memory.”
—William Gibson (b. 1948)
“My life is superficial, takes no root in the deep world; I ask, When shall I die, and be relieved of the responsibility of seeing a Universe which I do not use? I wish to exchange this flash-of-lightning faith for continuous daylight, this fever-glow for a benign climate.”
—Ralph Waldo Emerson (1803–1882)