Encapsulating Security Payload

E123426

Encapsulating Security Payload (ESP) is a core IPsec protocol that provides confidentiality, integrity, and optional authentication for IP packets through encryption and encapsulation.

All labels observed (1)

Label Occurrences
Encapsulating Security Payload canonical 2

How this entity was disambiguated

Statements (51)

Predicate Object
instanceOf IPsec protocol
network security protocol
abbreviation ESP
appliesTo IPv4
IPv6
canBeUsedWithout Authentication Header
canEncrypt ICMP messages
TCP segments
UDP datagrams
upper-layer protocols
canProvide authentication
canUseAlgorithmType block ciphers
message authentication codes
stream ciphers
symmetric encryption algorithms
commonlyUsedWith IKE
comparedWith Authentication Header
definedIn IPsec architecture
differenceFromAuthenticationHeader provides encryption in addition to integrity
function provide anti-replay protection
provide connectionless integrity
provide data origin authentication
provide limited traffic flow confidentiality
headerField Security Parameters Index
Sequence Number
identifiedBy IP protocol number 50
mayInclude Integrity Check Value
obsoletes RFC 2406
operatesAtLayer network layer
partOf IPsec
primaryFunction provide confidentiality for IP packets
protects IP payload
requires key management
securityProperty anti-replay
authentication
confidentiality
integrity
specifiedIn RFC 4303
standardizedBy Internet Engineering Task Force
surface form: IETF
supportsMode transport mode
tunnel mode
trailerField Next Header
Pad Length
Padding
usedIn IPsec
surface form: IPsec tunnels

VPNs
remote access VPNs
site-to-site VPNs
uses Security Association
encapsulation
encryption

How these facts were elicited

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

IPsec usesProtocol Encapsulating Security Payload
RFC 2401 relatedTo Encapsulating Security Payload