Glossary
IPsec (Internet Protocol Security)
IPsec (Internet Protocol Security) is a suite of protocols designed to secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. It operates at the network layer, allowing it to secure all traffic over an IP network, providing a high degree of security for data transfer.
IPsec is widely used to set up secure virtual private networks (VPNs), especially over untrusted networks such as the internet. It can protect data flows between a pair of hosts (host-to-host), between a pair of security gateways (gateway-to-gateway), or between a security gateway and a host (gateway-to-host).
The key functionalities of IPsec include:
IPsec supports two modes of operation:
IPsec uses cryptographic keys to perform these functions, which can be managed manually or through a protocol such as IKE (Internet Key Exchange). IKE automates the negotiation of protocols and keys to establish a secure and efficient IPsec connection.
By providing robust security measures, IPsec is critical in the architecture of secure network communications, protecting data as it travels across potentially insecure environments like the internet.