Skip to Main Content
IPSec provides a framework of protocols for protecting transmissions over an IP network. This allows the creation of a secure VPN over the existing Internet, with data fully encrypted and secure when transferred between two points. IPSec resides at the network level and can be implemented regardless of applications used, giving remote users full access to their network and to robust data, voice, or video applications. A big advantage of IPsec is that security arrangements can be handled without requiring changes to individual user computers. IPSec defines two protocols, the Authentication Header (AH) and Encapsulating Security Payload (ESP) Protocols to provide authentication or encryption for packets at the IP level. To establish a logical relationship IPSec requires a Security Association between two hosts. For establishing this relation a protocol called Internet Key Exchange was designed. IKE is divided into two phases, phase I and phase II. Phase I creates SAs for phase II. Phase II creates SAs for a data exchange protocol such as IP Sec. In this paper we propose modified protocols for the IKE Phase I.