Internet Key Exchange (IKE or IKEv2) is the protocol used to set up a security association (SA) in the IPsec protocol suite. IKE builds upon the Oakley protocol and ISAKMP. IKE uses X.509 certificates for authentication which are either pre-shared or distributed using DNS (preferably with DNSSEC), and a Diffie–Hellman key exchange to set up a shared session secret from which cryptographic keys are derived. In addition, a security policy for every peer which will connect must be manually maintained.
Read more about Internet Key Exchange: History, Architecture, Protocol Extensions, Implementations
Famous quotes containing the words key and/or exchange:
“You have many choices. You can choose forgiveness over revenge, joy over despair. You can choose action over apathy.... You hold the key to how well you make the emotional adjustment to your divorce and consequently how well your children will adapt.”
—Stephanie Marston (20th century)
“The press and politicians. A delicate relationship. Too close, and danger ensues. Too far apart and democracy itself cannot function without the essential exchange of information. Creative leaks, a discreet lunch, interchange in the Lobby, the art of the unattributable telephone call, late at night.”
—Howard Brenton (b. 1942)