Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“Japanese mothers credit “effort” as the key determinant of a child’s achievement in school, while American mothers name “ability” as the more important factor.”
—Perry Garfinkel (20th century)
“So long as the system of competition in the production and exchange of the means of life goes on, the degradation of the arts will go on; and if that system is to last for ever, then art is doomed, and will surely die; that is to say, civilization will die.”
—William Morris (1834–1896)