程序代写代做代考 algorithm IPSec VPN中SA属性定义

IPSec VPN中SA属性定义

提议载荷类型：
Protocol ID Value
———– ——-
RESERVED 0
PROTO_ISAKMP 1
PROTO_IPSEC_AH 2
PROTO_IPSEC_ESP 3
PROTO_IPCOMP 4

ISAKMP变换载荷类型（第一阶段）：
Transform Value
——— —–
RESERVED 0
KEY_IKE 1

IKE SA中属性类型（第一阶段）：
class value type
———————————————————————————————
Encryption Algorithm 1 B
Hash Algorithm 2 B
Authentication Method 3 B
Group Description 4 B
Group Type 5 B
Group Prime/Irreducible Polynomial 6 V
Group Generator One 7 V
Group Generator Two 8 V
Group Curve A 9 V
Group Curve B 10 V
Life Type 11 B
Life Duration 12 V
PRF 13 B
Key Length 14 B
Field Size 15 B
Group Order 16 V

每类属性的取值：
－ Encryption Algorithm Defined In
DES-CBC 1 RFC 2405
IDEA-CBC 2
Blowfish-CBC 3
RC5-R16-B64-CBC 4
3DES-CBC 5
CAST-CBC 6

－ Hash Algorithm Defined In
MD5 1 RFC 1321
SHA 2 FIPS 180-1
Tiger 3 See Reference [TIGER]

－Authentication Method
pre-shared key 1
DSS signatures 2
RSA signatures 3
Encryption with RSA 4
Revised encryption with RSA 5

－Group Description
default 768-bit MODP group 1
alternate 1024-bit MODP group 2
EC2N group on GP[2^155] 3
EC2N group on GP[2^185] 4
alternate 1536-bit MODP group 5

－Group Type
MODP (模求幂组) 1
ECP (基于GF[P]的椭圆曲线组) 2
EC2N (基于GF[2^N]的椭圆曲线组) 3

－ Life Type
seconds (秒) 1
kilobytes (千字节) 2

ESP变换载荷类型（第二阶段）：
Transform ID Value
———— —–
RESERVED 0
ESP_DES_IV64 1
ESP_DES 2
ESP_3DES 3
ESP_RC5 4
ESP_IDEA 5
ESP_CAST 6
ESP_BLOWFISH 7
ESP_3IDEA 8
ESP_DES_IV32 9
ESP_RC4 10
ESP_NULL 11
ESP_AES 12

IPSec SA中属性（第二阶段）：
class value type
————————————————————————-
SA Life Type 1 B
SA Life Duration 2 V
Group Description 3 B
Encapsulation Mode 4 B
Authentication Algorithm 5 B
Key Length 6 B
Key Rounds 7 B
Compress Dictionary Size 8 B
Compress Private Algorithm 9 V