VPN MEMO

REFERENCE

VPN MEMO

MEMO

セキュリティ・プロトコル⇒どのようにIPパケットをカプセル化するのか
– ESP 暗号(秘匿)と認証(完全性)
– AH 認証(完全性のみで暗号無し)

!!!!! ESP
  esp-3des         ESP transform using 3DES(EDE) cipher (168 bits)
  esp-aes          ESP transform using AES cipher
  esp-des          ESP transform using DES cipher (56 bits)
  esp-gcm          ESP transform using GCM cipher
  esp-gmac         ESP transform using GMAC cipher
  esp-seal         ESP transform using SEAL cipher (160 bits)
  esp-null         ESP transform w/o cipher
!!!!! ESP
  esp-md5-hmac     ESP transform using HMAC-MD5 auth
  esp-sha-hmac     ESP transform using HMAC-SHA auth
  esp-sha256-hmac  ESP transform using HMAC-SHA256 auth
  esp-sha384-hmac  ESP transform using HMAC-SHA384 auth
  esp-sha512-hmac  ESP transform using HMAC-SHA512 auth
!!!!! AH
  ah-md5-hmac      AH-HMAC-MD5 transform
  ah-sha-hmac      AH-HMAC-SHA transform
  ah-sha256-hmac   AH-HMAC-SHA256 transform
  ah-sha384-hmac   AH-HMAC-SHA384 transform
  ah-sha512-hmac   AH-HMAC-SHA512 transform
!!!!! Compress
  comp-lzs         IP Compression using the LZS compression algorithm

コメント