UNLIMITED FREE ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already an Engineering360 user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your Engineering360 Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 4543

The Use of Galois Message Authentication Code (GMAC) in IPsec ESP and AH

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 May 2006
Status: active
Page Count: 14
scope:

This memo describes the use of the Advanced Encryption Standard (AES) Galois Message Authentication Code (GMAC) as a mechanism to provide data origin authentication, but not confidentiality, within the IPsec Encapsulating Security Payload (ESP) and Authentication Header (AH). GMAC is based on the Galois/Counter Mode (GCM) of operation, and can be efficiently implemented in hardware for speeds of 10 gigabits per second and above, and is also well-suited to software implementations.

Document History

IETF RFC 4543
May 1, 2006
The Use of Galois Message Authentication Code (GMAC) in IPsec ESP and AH
This memo describes the use of the Advanced Encryption Standard (AES) Galois Message Authentication Code (GMAC) as a mechanism to provide data origin authentication, but not confidentiality, within...

References

This document references:
IETF RFC 4302 - IP Authentication Header
Published by IETF on December 1, 2005
A description is not available for this item.
This document references:
IETF RFC 4106 - The Use of Galois/Counter Mode (GCM) in IPsec Encapsulating Security Payload (ESP)
Published by IETF on June 1, 2005
This memo describes the use of the Advanced Encryption Standard (AES) in Galois/Counter Mode (GCM) as an IPsec Encapsulating Security Payload (ESP) mechanism to provide confidentiality and data...
This document references:
IETF RFC 4303 - IP Encapsulating Security Payload (ESP)
Published by IETF on December 1, 2005
A description is not available for this item.
This document is referenced by:
ANSI/INCITS 496 - Information Technology – Fibre Channel – Security Protocols - 2/Amendment 1 (FC-SP-2/AM1)
Published by ANSI on May 19, 2015
This amendment updates INCITS 496-2012, FC-SP-2, to support additional cryptographic algorithms.
This document is referenced by:
IETF RFC 7146 - Securing Block Storage Protocols over IP: RFC 3723 Requirements Update for IPsec v3
Published by IETF on April 1, 2014
RFC 3723 specifies IPsec requirements for block storage protocols over IP (e.g., Internet Small Computer System Interface (iSCSI)) based on IPsec v2 (RFC 2401 and related RFCs); those requirements...
This document is referenced by:
IETF RFC 7321 - Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)
Published by IETF on August 1, 2014
This document updates the Cryptographic Algorithm Implementation Requirements for the Encapsulating Security Payload (ESP) and Authentication Header (AH). It also adds usage guidance to help in the...
This document is referenced by:
IETF RFC 7492 - Analysis of Bidirectional Forwarding Detection (BFD) Security According to the Keying and Authentication for Routing Protocols (KARP) Design Guidelines
Published by IETF on March 1, 2015
Introduction This document performs a gap analysis of the current state of Bidirectional Forwarding Detection [RFC5880] according to the requirements of KARP Design Guidelines [RFC6518]. Previously,...
This document is referenced by:
IETF RFC 7402 - Using the Encapsulating Security Payload (ESP) Transport Format with the Host Identity Protocol (HIP)
Published by IETF on April 1, 2015
This memo specifies an Encapsulating Security Payload (ESP) based mechanism for transmission of user data packets, to be used with the Host Identity Protocol (HIP). This document obsoletes RFC 5202.
View Less
View All
Advertisement