March 12, 2002
Practical Aspects of Modern Cryptography
12
IPSEC ESP in Transport Mode
Data
TCP Hdr
Orig IP Hdr
Data
TCP Hdr
ESP Hdr
Orig IP Hdr
ESP Trailer
ESP Auth
Usually
encrypted
integrity hash
coverage
SecParamIndex
Padding
PadLength
NextHdr
Seq#
Keyed Hash
22-36 bytes total
InitVector
ESP is IP protocol 50
Insert
Append