IPsec
What is IPsec?
IPsecA suite of IETF protocols that authenticates and encrypts IP packets to provide secure communications at the network layer.
IPsec is a framework defined in a series of RFCs that operates at OSI layer 3 to secure arbitrary IP traffic between hosts or gateways. It comprises the Authentication Header (AH) for integrity, the Encapsulating Security Payload (ESP) for confidentiality and integrity, and the Internet Key Exchange (IKE, typically IKEv2) for negotiating security associations and keys. IPsec runs in transport mode (protecting payload between endpoints) or tunnel mode (encapsulating the entire IP packet, used for VPNs). It is the dominant building block for site-to-site VPNs and is broadly supported by routers, firewalls, mobile OSes, and cloud platforms.
● Examples
- 01
IKEv2/IPsec tunnels connecting branch routers to a corporate data center.
- 02
ESP-encrypted IPsec used to protect traffic between two cloud VPCs over the public internet.
● Frequently asked questions
What is IPsec?
A suite of IETF protocols that authenticates and encrypts IP packets to provide secure communications at the network layer. It belongs to the Network Security category of cybersecurity.
What does IPsec mean?
A suite of IETF protocols that authenticates and encrypts IP packets to provide secure communications at the network layer.
How do you defend against IPsec?
Defences for IPsec typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for IPsec?
Common alternative names include: Internet Protocol Security.