Internet Key Exchange


The Internet Key Exchange (IKE) protocol is a key management protocol standard that is used in conjunction with the IPSec standard. IKE enhances IPSec by providing additional features, flexibility, and ease of configuration for the IPSec standard. IPSec can however, be configured without IKE. Benefits provided by IKE include:

Ø Eliminates the need to manually specify all the IPSec security parameters in the crypto maps at both peers.

Ø Allows you to specify a lifetime for the IPSec security association.

Ø Allows encryption keys to change during IPSec sessions.

Ø Allows IPSec to provide anti-replay services.

Ø Permits Certification Authority (CA) support for a manageable, scalable IPSec implementation.

Ø Allows dynamic authentication of peers.