1 ipsec autokey – AirLive RS-3000 User Manual

14.1 IPSec Autokey

Define the required fields of VPN:

Preshare Key:



The IKE VPN must be defined with a Preshared Key. The Key may be up to 128 bytes long.

ISAKMP (Internet Security Association Key Management Protocol):

 An extensible protocol-encoding scheme that complies to the Internet Key Exchange (IKE)

framework for establishment of Security Associations (SAs).

Main Mode:



This is another first phase of the Oakley protocol in establishing a security association, but instead

of using three packets like in aggressive mode, it uses six packets.

Aggressive mode:



This is the first phase of the Oakley protocol in establishing a security association using three data

packets.

AH (Authentication Header):



One of the IPSec standards that allows for data integrity of data packets.

ESP (Encapsulating Security Payload):



One of the IPSec standards that provides for the confidentiality of data packets.

DES (Data Encryption Standard):



The Data Encryption Standard developed by IBM in 1977 is a 64-bit block encryption block cipher

using a 56-bit key.

Triple-DES (3DES):



The DES function performed three times with either two or three cryptographic keys.

AES (Advanced Encryption Standard):



An encryption algorithm yet to be decided that will be used to replace the aging DES encryption

algorithm and that the NIST hopes will last for the next 20 to 30 years.

NULL Algorithm:

100