Course Intro
- Overview
- ClearSight Analyzer
- Logistics and Labs
- Introductions
IPSec v2 Overview
- RFC 2401 and 2412
- Security and the OSI Model
- Crypto Building Blocks
- Crypto Concepts
- Keys and Key Management
- Public/private Key Infrastructure
- Key Recovery
- Tunnels and L2TPv3
- Virtual Private Networks (VPNs)
- IPSec Architectural Model
L2TPv3 Lab: View setup of an L2TPv3 tunnel and logical multimedia connections within the tunnel. Lab covers appropriate parts of PPP, L2TPv3, PAP and CHAP protocols.
LAB Debrief: Group Discussion
IP Security Overview
- Encapsulating Security Payload (ESP)
- Authentication Header (AH)
- Internet Key Exchange (IKE)
IPSec Architecture
- IETF IPSec v2 Roadmap
- IPSec Implementation
- IPSec Modes
- Transport Mode
- Transport Mode with NAT Traversal
- Tunnel Mode
- Security Associations (SAs)
- IPSec Processing
- Fragmentation
- Internet Control Message Protocol (ICMP)
Encapsulating Security Payload (ESP)
- ESP Header
- ESP Modes
- ESP Procedures
ESP Lab: View call traces of encrypted network traffic using the Encapsulating Security Payload. Lab includes introduction to key cryptographic techniques.
LAB Debrief: Group Discussion
Authentication Header (AH)
- AH Header
- AH Modes
- AH Procedures
AH Lab: View call traces of traffic that uses the Authentication Header with and without Encapsulating Security Payload. Lab includes hacks against and countermeasures to ESP and AH security vulnerabilities.
LAB Debrief: Group Discussion
The Internet Key Exchange
- ISAKMP
- Public/private Key Exchange Systems
- Diffie-Hellman and Variations
- Internet Key Exchange (IKE)
- IPSec ISAKMP Domain of Interpretation (DOI)
IKE/ISAKMP Lab: View call traces of completed and aborted tunnel establishment and key exchanges using IKE and ISAKMP.
LAB Debrief: Group Discussion
Security Policy for IPSec
- Defining Policy
- Policy Representation and Distribution
- Policy Management System
- Policy Deployment
IPSec Implementation
- Implementation Architecture
- IPSec Protocol Procedures
- Fragmentation and Protocol Maximum Transmission Unit Length
- ICMP
- End-to-End Security View
Conclusion