Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“Yes, I know.
Death sits with his key in my lock.
Not one day is taken for granted.
Even nursery rhymes have put me in hock.”
—Anne Sexton (1928–1974)
“But come what sorrow can,
It cannot countervail the exchange of joy
That one short minute gives me in her sight.”
—William Shakespeare (1564–1616)