Internet Key Exchange Aggressive mode negotiations using Cookie and Nonce Alternatives

Main Article Content

Sushma Yalamanchili
M. Kameswara Rao, Ch. Smitha Chowdary


The Internet is constantly evolving with new technology, networks, applications and users that require different levels of security. It is therefore a requirement that security requirements be reassessed at frequent intervals of time by all stakeholders. Internet Security Protocol (IPSec) provides security at the Internet layer protocol. Internet Key Exchange (IKE) is optionally used to perform key exchange, authentication and formation of Security Associations between a pair of communicating parties. In this paper, we examine the impact of using costly computational operations involving large random and prime numbers such as nonces and cookies in IKE interactions in Aggressive mode methods. IKE Aggressive mode interactions for all four methods are proposed using alternatives for cookies and nonces which will reduce the computational overhead involved in these interactions.


Keywords: Internet Security; Internet Key Exchange; Aggressive mode; Cookies; Nonces; Authentication; Digital Signatures


Download data is not yet available.

Article Details