Internet key exchange ( IKE ) protocol is used to exchange and manage the encryption key in VPN. Internet密钥交换协议(IKE)是用于交换和管理在VPN中使用的加密密钥的。
IKE is automation key management protocol of IPSec, it was built on the framework that was defined by Internet Security Association and Internet Security Association and Key Management Protocol, it defined its unique technology of producing verification and encryption material and negotiation shared policy. IKE是IPSec的自动密钥管理协议,它建立在Internet安全连接和Internet安全连接及密钥管理协议(ISAKMP)定义的框架上,定义出自己独一无二的验证加密材料生成技术,以及协商共享策略。
The realization of dynamic key exchange is based on the IKE ( Internet Key Exchange ) protocol, which is a hybrid protocol and defines the methods with which the two sides of the communication processes authenticate, negotiate encryption algorithms and generate shared session key. 动态密钥交换机制实现的基础是IKE(Internetkeyexchange)协议,它是一种混合协议,定义了通信双方进行身份认证、协商加密算法以及生成共享会话密钥的方法。
PKI ( Public Key Infrastructure ) is a uniform technological framework that offers the services of data encrypt and digital signature in the open Internet environment by using the public-key encrypt technology of current encryption. 它是利用现代密码学中公钥密码技术在开放的Internet网络环境中提供数据加密以及数字签名服务的统一技术框架。
As a security Protocol in network layer, IPSec combines flexibly encryption, authentication, key management and access control to provide a standard for Internet security network environment. IPSec作为工作在网络层的安全协议,灵活地将加密、认证、密钥管理和访问控制等结合在一起,为Internet提供了一个标准的、安全的网络环境。