Outbound and Inbound AH Field Processing
The AH specified in each outgoing datagram is subjected to a process to implement the authentication information in the datagram. This process, called the outbound process, is performed by the IPSec implementation on the sending computer. The outbound process must begin with the identification of an SA that is associated with a datagram. This is because the sending and receiving computers need information on the algorithms used to provide authentication and integrity features in IP datagrams. If an SA does not exist, the process of creating a new SA must be initiated. You will learn about how an SA is created in the later sections of the chapter.
After an SA is established, the Sequence number ...
Get Special Edition Using TCP/IP, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
