| (I) (1.) The name of the IETF working group that is specifying a
security architecture [R2401] and protocols to provide security
services for Internet Protocol traffic. (2.) A collective name for
that architecture and set of protocols. (Implementation of IPsec
protocols is optional for IP version 4, but mandatory for IP
version 6.) (See: Internet Protocol Security Option.)
(C) Note that the letters "sec" are lower-case.
(C) The IPsec architecture specifies (a) security protocols (AH
and ESP), (b) security associations (what they are, how they work,
how they are managed, and associated processing), (c) key
management (IKE), and (d) algorithms for authentication and
encryption. The set of security services include access control
service, connectionless data integrity service, data origin
authentication service, protection against replays (detection of
the arrival of duplicate datagrams, within a constrained window),
data confidentiality service, and limited traffic flow
confidentiality.
|
