Internet Key Exchange protocol (IKE)

Internet Key Exchange protocol (IKE) is used for exchange and management for use in the VPN encryption key. So far, it is still a security flaw. Based on the agreement of the important practical significance, a brief introduction to the work of its mechanisms and security analysis is carried out; for the attacks and DoS attacks against the middleman, the corresponding correction method; also the main mode pre-shared key authentication method put forward new proposals; Finally, it two trends: JFK and IKEv2. Internet Key Exchange (IKE) to solve the network in a secure environment (such as the Internet) to create or update in the safe sharing of key issues. IKE is a very general agreement, not only for the IPsec security association negotiation, but also for SNMPv3, RIPv2, OSPFv2 and any other requirements of confidentiality agreements negotiate security parameters.
 IKE is a hybrid protocol, the Internet Security Association and Key Management Protocol (ISAKMP) and two OAKLEY key exchange protocol with SKEME composition. ISAKMP IKE to create the framework defined by, and follows the OAKLEY key exchange mode and SKEME sharing and key update technology, but also defines its own way of two key exchange: main mode and active mode.