更新时间:2022-01-25 GMT+08:00

参考标准和协议

与IPSec特性相关的参考标准与协议如下:

  • RFC 4301:Security Architecture for the Internet Protocol
  • RFC 2403:The Use of HMAC-MD5-96 within ESP and AH
  • RFC 2409:The Internet Key Exchange (IKE)
  • RFC 2857:The Use of HMAC-RIPEMD-160-96 within ESP and AH
  • RFC 3566: The AES-XCBC-MAC-96 Algorithm and its use with IPsec
  • RFC 3625:More Modular Exponential (MODP)Diffie-Hellman groups for Internet Key Exchange (IKE)
  • RFC 3664:The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)
  • RFC 3706:A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers
  • RFC 3748:Extensible Authentication Protocol(EAP)
  • RFC 3947:Negotiation of NAT-Traversal in the IKE
  • RFC 4109:Algorithms for Internet Key Exchange version 1 (IKEv1)
  • RFC 3948:UDP Encapsulation of IPsec ESP Packets
  • RFC 4305:Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH)
  • RFC 4306:Internet Key Exchange (IKEv2)Protocol
  • RFC 4307:Cryptographic Algorithms for Use in the Internet Key Exchange Version 2 (IKEv2)
  • RFC 4322:Opportunistic Encryption using the Internet Key Exchange (IKE)
  • RFC 4359:The Use of RSA/SHA-1 Signatures within Encapsulating Security Payload (ESP) and Authentication Header (AH)
  • RFC 4434:The AES-XCBC-PRF-128 Algorithm for the Internet Key Exchange Protocol (IKE)
  • RFC 4478:Repeated Authentication in Internet Key Exchange (IKEv2)
  • RFC 5996:Internet Key Exchange Protocol Version 2 (IKEv2)