Chapter 11: Areas of Interest within IKE

As with any protocol, there are areas for improvement or enhancement. Given the complexity of the IPSec suite of protocols and the openness of the standardization process, many options have been suggested, added, and removed as the standard has grown. This chapter endeavors to expose areas of known weakness, introduce options presented to the IETF workgroup, show aspects of IKE not well-known, and generally shed light on the various intricacies that have labeled IPSec a maturing protocol.

Without a doubt, IKE represents the pinnacle of IPSec VPN complexity. Unarguably, it is intensely intricate and fraught with tangents that seem to come from every direction. IKE has come in and out of the center of ...

Get A Technical Guide to IPSec Virtual Private Networks now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

A Technical Guide to IPSec Virtual Private Networks by James S. Tiller

Chapter 11: Areas of Interest within IKE

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly