Authentication Header
E522213
Authentication Header is an IPsec protocol that provides connectionless integrity and data origin authentication for IP packets, optionally protecting against replay attacks.
Statements (43)
| Predicate | Object |
|---|---|
| instanceOf | IPsec protocol ⓘ |
| abbreviation | AH ⓘ |
| abbreviationOfSuite | IPsec NERFINISHED ⓘ |
| belongsTo | Internet Protocol Security suite NERFINISHED ⓘ |
| canBeNegotiatedBy | Internet Key Exchange NERFINISHED ⓘ |
| canBeNegotiatedByAbbreviation | IKE ⓘ |
| canBeUsedWith | Encapsulating Security Payload NERFINISHED ⓘ |
| canBeUsedWithAbbreviation | ESP NERFINISHED ⓘ |
| canProtect |
IPv4 packets
ⓘ
IPv6 packets ⓘ |
| category | Internet standard ⓘ |
| definedIn | IPsec architecture ⓘ |
| definedInRFC | RFC 4302 NERFINISHED ⓘ |
| doesNotProvide |
confidentiality
ⓘ
encryption of payload ⓘ |
| hasField |
Authentication Data
ⓘ
Next Header ⓘ Payload Length ⓘ Security Parameters Index ⓘ Sequence Number ⓘ |
| hasFieldAbbreviation | SPI ⓘ |
| isSpecifiedBy | IETF NERFINISHED ⓘ |
| operatesAtLayer | network layer ⓘ |
| optionallyProvides | protection against replay attacks ⓘ |
| predecessorRFC | RFC 2402 NERFINISHED ⓘ |
| protects | IP packets ⓘ |
| protocolNumber | 51 ⓘ |
| provides |
connectionless integrity
ⓘ
data origin authentication ⓘ |
| requires | shared security association between peers ⓘ |
| statusInRFC4302 | Internet Standard Track protocol ⓘ |
| supportsMode |
transport mode
ⓘ
tunnel mode ⓘ |
| usedFor |
end-to-end IP packet authentication
ⓘ
gateway-to-gateway IP packet authentication ⓘ |
| uses |
Integrity Check Value
ⓘ
Security Association ⓘ cryptographic hash functions ⓘ |
| usesAbbreviation |
ICV
NERFINISHED
ⓘ
SA ⓘ |
| usesMechanism | sequence numbers for anti-replay ⓘ |
| verifies |
integrity of immutable IP header fields
ⓘ
integrity of upper-layer protocol data ⓘ |
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.