my profile | register | search | faq | forum home

» Security Internetworking Experts   » Security   » CCIE Security Written Forum   » Why 2 different transform sets for IPSec

UBBFriend: Email this page to someone!

Author Topic: Why 2 different transform sets for IPSec murali_uda Jr Member Member # 32401 Rate Member posted June 16, 2012 01:40 AM                    Hi all, I have this doubt from long time , I dont know why we have to negotiate policies again for data in IKE phase 2 ? As DH keys are exchanged and secure management connection established why cant we use the same sym encryption key negotiated in the phase 1 for data encryption ...why we are using the sym key exchanged in phase 1 to again encrypt the messages to negotiate polices and the use that sym key for data? Thanks for your time, Murali. Posts: 12 | From: bangalore | Registered: May 2012  |  IP: Logged

All times are Eastern Time

Printer-friendly view of this topic

Hop To: Select a Forum: Category: Security -------------------- CCIE Security Lab Forum CCIE Security Written Forum I passed my CCIE Lab!!! Other Cisco Security Certification Category: Private Class Forum -------------------- 12/13/10 - 12/17/10 - CCIE Security Mock Lab Boot Camp

Contact Us | Security Internetworking Experts