翻訳と辞書
Words near each other
・ Internet Research Steering Group
・ Internet Research Task Force
・ Internet Resource Locator
・ Internet Revolution Egypt
・ Internet Routing in Space
・ Internet Routing Registry
・ Internet Rush Hour
・ Internet Sacred Text Archive
・ Internet safety
・ Internet Safety Act
・ Internet scavenger hunt
・ Internet science
・ Internet Scrabble Club
・ Internet security
・ Internet Security Alliance
Internet Security Association and Key Management Protocol
・ Internet Security Awareness Training
・ Internet Security Essentials
・ Internet Security Research Group
・ Internet Server Application Programming Interface
・ Internet service provider
・ Internet Service Providers Association
・ Internet Service Providers Association of Ireland
・ Internet Service Providers Association of Pakistan
・ Internet services technology
・ Internet sex addiction
・ Internet Shakespeare Editions
・ Internet slang
・ Internet Slowdown Day
・ Internet Society


Dictionary Lists
翻訳と辞書 辞書検索 [ 開発暫定版 ]
スポンサード リンク

Internet Security Association and Key Management Protocol : ウィキペディア英語版
Internet Security Association and Key Management Protocol
ISAKMP (Internet Security Association and Key Management Protocol) is a protocol defined by RFC 2408 for establishing Security Associations (SA) and cryptographic keys in an Internet environment. ISAKMP only provides a framework for authentication and key exchange and is designed to be key exchange independent; protocols such as Internet Key Exchange and Kerberized Internet Negotiation of Keys provide authenticated keying material for use with ISAKMP. For example: IKE describes a protocol using part of Oakley and part of SKEME in conjunction with ISAKMP to obtain authenticated keying material for use with ISAKMP, and for other security associations such as AH and ESP for the IETF IPsec DOI〔The Internet Key Exchange (IKE), RFC 2409, §1 Abstract〕
== Overview ==
ISAKMP defines the procedures for authenticating a communicating peer, creation and management of Security Associations, key generation techniques and threat mitigation (e.g. denial of service and replay attacks). As a framework,〔 ISAKMP is typically utilized by IKE for key exchange, although other methods have been implemented such as Kerberized Internet Negotiation of Keys. A Preliminary SA is formed using this protocol; later a fresh keying is done.
ISAKMP defines procedures and packet formats to establish, negotiate, modify and delete Security Associations. SAs contain all the information required for execution of various network security services, such as the IP layer services (such as header authentication and payload encapsulation), transport or application layer services or self-protection of negotiation traffic. ISAKMP defines payloads for exchanging key generation and authentication data. These formats provide a consistent framework for transferring key and authentication data which is independent of the key generation technique, encryption algorithm and authentication mechanism.
ISAKMP is distinct from key exchange protocols in order to cleanly separate the details of security association management (and key management) from the details of key exchange. There may be many different key exchange protocols, each with different security properties. However, a common framework is required for agreeing to the format of SA attributes and for negotiating, modifying and deleting SAs. ISAKMP serves as this common framework.
ISAKMP can be implemented over any transport protocol. All implementations must include send and receive capability for ISAKMP using UDP on port 500.

抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)
ウィキペディアで「Internet Security Association and Key Management Protocol」の詳細全文を読む



スポンサード リンク
翻訳と辞書 : 翻訳のためのインターネットリソース

Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.