Issue No.09 - September (1998 vol.31)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/2.708449
Internet Protocol, version 6, was conceived with two main goals: increase address space and improve security, relative to IPv4. The community achieved the first goal by increasing the IP address length from 32 bits to 128 bits. To meet the second goal, the Internet Engineering Task Force chartered the IP Security Working Group to design a security architecture and corresponding protocols that would provide cryptographically based security for IPv6. As work progressed, however, the IP community realized that the security architecture proposed for IPv6 could also be used for IPv4. Consequently, it extended this charter to retrofitting the security protocols, or IPsec protocols, into IPv4 implementations. Many IPv4 software vendors have announced they will support the IPsec protocols in future releases. This retrofitting is an important part of the working group's charter because IPv6 deployment is turning out to be slow. This article overviews the proposed security architecture and the two main protocols?the IP Security Protocol and the Internet Key Management Protocol?describes the risks they address, and touches on some implementation requirements.
Rolf Oppliger, "Security at the Internet Layer", Computer, vol.31, no. 9, pp. 43-47, September 1998, doi:10.1109/2.708449