| (I) A key distribution protocol that uses hybrid encryption to
convey session keys that are used to encrypt data in IP packets.
[R2356] (See: IKE, IPsec.)
(C) SKIP uses the Diffie-Hellman algorithm (or could use another
key agreement algorithm) to generate a key-encrypting key for use
between two entities. A session key is used with a symmetric
algorithm to encrypt data in one or more IP packets that are to be
sent from one of the entities to the other. The KEK is used with a
symmetric algorithm to encrypt the session key, and the encrypted
session key is placed in a SKIP header that is added to each IP
packet that is encrypted with that session key.
|
