CGA as Alternative Security Credentials with IKEv2: Implementation and Analysis

Provided by: CNRS
Topic: Security
Format: PDF
Internet Protocol Security (IPSec) is a protocol suite enabling secure IP communications by authentication and/or encryption. Internet Key Exchange version 2 (IKEv2) mechanisms is recommended to configure dynamically IPSec between IP nodes and the authentication of each peer is usually based on either pre-shared keys, X.509 certificates or Extensible Authentication Protocol (EAP). However, these methods may have drawbacks. On the other hand, Cryptographically Generated Addresses (CGA), IPv6 addresses with specific security properties, are the main component of the mechanism to secure the IPv6 neighbor discovery protocol but these security properties are only used in a local scope.

Find By Topic