Authentication Header

E522213

Authentication Header is an IPsec protocol that provides connectionless integrity and data origin authentication for IP packets, optionally protecting against replay attacks.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (1)

Label Occurrences
Authentication Header canonical 2

Statements (43)

Predicate Object
instanceOf IPsec protocol
abbreviation AH
abbreviationOfSuite IPsec NERFINISHED
belongsTo Internet Protocol Security suite NERFINISHED
canBeNegotiatedBy Internet Key Exchange NERFINISHED
canBeNegotiatedByAbbreviation IKE
canBeUsedWith Encapsulating Security Payload NERFINISHED
canBeUsedWithAbbreviation ESP NERFINISHED
canProtect IPv4 packets
IPv6 packets
category Internet standard
definedIn IPsec architecture
definedInRFC RFC 4302 NERFINISHED
doesNotProvide confidentiality
encryption of payload
hasField Authentication Data
Next Header
Payload Length
Security Parameters Index
Sequence Number
hasFieldAbbreviation SPI
isSpecifiedBy IETF NERFINISHED
operatesAtLayer network layer
optionallyProvides protection against replay attacks
predecessorRFC RFC 2402 NERFINISHED
protects IP packets
protocolNumber 51
provides connectionless integrity
data origin authentication
requires shared security association between peers
statusInRFC4302 Internet Standard Track protocol
supportsMode transport mode
tunnel mode
usedFor end-to-end IP packet authentication
gateway-to-gateway IP packet authentication
uses Integrity Check Value
Security Association
cryptographic hash functions
usesAbbreviation ICV NERFINISHED
SA
usesMechanism sequence numbers for anti-replay
verifies integrity of immutable IP header fields
integrity of upper-layer protocol data

How these facts were elicited

The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.

Instruction
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10.

# Requirements
- If you don't know the subject at all, return an empty list.
- If the subject is not a named entity, return an empty list.
- Include at least one triple where predicate is "instanceOf".
- Do not get too wordy.
- Separate several objects into multiple triples with one object.
Input
Subject: Authentication Header
Description of subject: Authentication Header is an IPsec protocol that provides connectionless integrity and data origin authentication for IP packets, optionally protecting against replay attacks.

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

Encapsulating Security Payload canBeUsedWithout Authentication Header
RFC 2401 relatedTo Authentication Header