Which encryption protocols does the AR support

The AR supports Authentication Header (AH) and Encapsulating Security Payload (ESP) protocols. Their differences are as follows:
-AH: provides data origin authentication, data integrity check, and anti-replay. The sender performs the hash algorithm on the IP payload and all header fields of an IP packet except for variable fields to generate a message digest. The receiver recalculates the message digest according to the received IP packet and compares the two message digests to determine whether the IP packet has been modified during transmission. AH does not encrypt the IP payload. AH applies to non-confidential data transmission.
-ESP: provides data encryption in addition to the functions provided by the AH protocol. ESP can encrypt and authenticate the IP payload but does not protect the IP packet header. ESP applies to confidential data transmission.

AH and ESP can be used independently or together. When AH and ESP are used together, ESP and AH headers are encapsulated in sequence, enhancing security.

Scroll to top