IKEv1
E522215
IKEv1 is the original version of the Internet Key Exchange protocol used to establish secure, authenticated communication channels for IPsec VPNs.
All labels observed (3)
| Label | Occurrences |
|---|---|
| Internet Key Exchange | 4 |
| IKEv1 canonical | 2 |
| ISAKMP | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T5479117 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: IKEv1 Context triple: [IKEv2, obsoletes, IKEv1]
-
A.
IKEv2
IKEv2 is a modern key management and security association protocol used to establish and maintain secure VPN connections in IPsec-based networks.
-
B.
IPsec
IPsec is a suite of protocols that provides secure, encrypted communication over IP networks by authenticating and protecting the integrity and confidentiality of data packets.
-
C.
IEEE 802.11i
IEEE 802.11i is a Wi‑Fi security standard that enhances wireless network protection by defining robust encryption and authentication mechanisms, including WPA2.
-
D.
IKE Phase 2
IKE Phase 2 is the stage of the IPsec key exchange process where security associations are negotiated and keys are established for protecting actual data traffic between peers.
-
E.
Encapsulating Security Payload
Encapsulating Security Payload (ESP) is a core IPsec protocol that provides confidentiality, integrity, and optional authentication for IP packets through encryption and encapsulation.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: IKEv1 Target entity description: IKEv1 is the original version of the Internet Key Exchange protocol used to establish secure, authenticated communication channels for IPsec VPNs.
-
A.
IKEv2
IKEv2 is a modern key management and security association protocol used to establish and maintain secure VPN connections in IPsec-based networks.
-
B.
IPsec
IPsec is a suite of protocols that provides secure, encrypted communication over IP networks by authenticating and protecting the integrity and confidentiality of data packets.
-
C.
IEEE 802.11i
IEEE 802.11i is a Wi‑Fi security standard that enhances wireless network protection by defining robust encryption and authentication mechanisms, including WPA2.
-
D.
IKE Phase 2
IKE Phase 2 is the stage of the IPsec key exchange process where security associations are negotiated and keys are established for protecting actual data traffic between peers.
-
E.
Encapsulating Security Payload
Encapsulating Security Payload (ESP) is a core IPsec protocol that provides confidentiality, integrity, and optional authentication for IP packets through encryption and encapsulation.
- F. None of above. chosen
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
Internet Key Exchange protocol
ⓘ
network security protocol ⓘ |
| abbreviationFor | Internet Key Exchange version 1 NERFINISHED ⓘ |
| authenticationMethods |
digital signatures
ⓘ
pre-shared keys ⓘ public key encryption ⓘ |
| category | IPsec key management ⓘ |
| definedBy | Internet Engineering Task Force NERFINISHED ⓘ |
| introduced | late 1990s ⓘ |
| messageTransport | UDP NERFINISHED ⓘ |
| negotiates |
encryption algorithms for IPsec
ⓘ
integrity algorithms for IPsec ⓘ key lifetimes ⓘ |
| operatesOver | UDP port 500 ⓘ |
| phaseStructure |
Phase 1 for IKE SA establishment
ⓘ
Phase 2 for IPsec SA negotiation ⓘ |
| provides |
authentication
ⓘ
key establishment ⓘ security association negotiation ⓘ |
| purpose |
establish secure communication channels for IPsec
ⓘ
perform key exchange for IPsec VPNs ⓘ provide mutual authentication between IPsec peers ⓘ |
| relatedSpecification |
RFC 2407
NERFINISHED
ⓘ
RFC 2408 NERFINISHED ⓘ |
| scope |
peer-to-peer VPN tunnels
ⓘ
remote access VPNs ⓘ site-to-site VPNs ⓘ |
| standardizedIn | RFC 2409 NERFINISHED ⓘ |
| status | obsoleted by IKEv2 in many deployments ⓘ |
| successor | IKEv2 NERFINISHED ⓘ |
| supports |
NAT traversal via extensions
ⓘ
Perfect Forward Secrecy depending on configuration ⓘ aggressive mode ⓘ main mode ⓘ quick mode ⓘ |
| usedWith |
IPsec
NERFINISHED
ⓘ
IPsec VPNs ⓘ |
| uses |
Certificate payloads
ⓘ
Diffie–Hellman key exchange NERFINISHED ⓘ Hash payloads ⓘ ISAKMP framework ⓘ Identification payloads ⓘ Key Exchange payloads ⓘ Oakley key determination protocol NERFINISHED ⓘ Security Association payloads ⓘ |
| vulnerabilities |
configuration complexity leading to misconfigurations
ⓘ
susceptible to certain denial-of-service attacks ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: IKEv1 Description of subject: IKEv1 is the original version of the Internet Key Exchange protocol used to establish secure, authenticated communication channels for IPsec VPNs.
Referenced by (7)
Full triples — surface form annotated when it differs from this entity's canonical label.