- Bronze, 100 points or more
IPsec also define two protocols, ESP and AH
For authenticationm which method does ESP use, pre-shared keys or digital signatures?
For message integrity, which method does esp use, HMAC-md5 or HMAC-SHA ?
AH protocol only provides:
Which method does AH use for authentication and message integrity?
Thanks a lot and have a nice day!
It's entirely up to you.
ESP can use either pre-shared keys or digital signatures for authentication.
For message intergrity it can use md5 or SHA.
For encryption it can use DES, 3DES, AES.
All of the above are assuming the actual device can support all methods.
AH - again up to you and device dependant.
When you configure an IPSEC VPN on a Cisco device eg. router/firewall you choose which to use.