An Internet Key Exchange Protocol Based on Public Key Infrastructure
Internet key exchange (IKE) is an automated key exchange mechanism that is used to facilitate the transfer of IPSec security associations (SAs). Public key infrastructure (PKI) is considered as a key element for providing security to new distributed communication networks and services. In this paper...
Saved in:
| Published in | Journal of Shanghai University Vol. 8; no. 1; pp. 51 - 56 |
|---|---|
| Main Author | |
| Format | Journal Article |
| Language | English |
| Published |
01.03.2004
|
| Subjects | |
| Online Access | Get full text |
| ISSN | 1007-6417 1863-236X |
| DOI | 10.1007/s11741-004-0012-8 |
Cover
| Summary: | Internet key exchange (IKE) is an automated key exchange mechanism that is used to facilitate the transfer of IPSec security associations (SAs). Public key infrastructure (PKI) is considered as a key element for providing security to new distributed communication networks and services. In this paper, we concentrate on the properties of the protocol of Phase 1 IKE. After investigating IKE protocol and PKI technology, we combine IKE protocol and PKI and present an implementation scheme of the IKE based on PKI. Then, we give a logic analysis of the proposed protocol with the BAN-logic and discuss the security of the protocol. The result indicates that the protocol is correct and satisfies the security requirements of Internet key exchange. |
|---|---|
| Bibliography: | 31-1735/N TP393.408 |
| ISSN: | 1007-6417 1863-236X |
| DOI: | 10.1007/s11741-004-0012-8 |