Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
4462
Views
0
Helpful
0
Comments

AH

ITA Terms
Community Member

‎06-08-2009 11:49 PM - edited ‎08-23-2017 01:10 PM

 

Description

Authentication Header (AH)

 

Complete Definition

AH provides integrity and authentication and non-repudiation, if the appropriate choice of cryptographic algorithms is made.

 

The AH is intended to guarantee connectionless integrity and data origin authentication of IP datagrams. Further, it can optionally protect against replay attacks by using the sliding window technique and discarding old packets. AH protects the IP payload and all header fields of an IP datagram except for mutable fields, i.e. those that might be altered in transit. In IPv4, mutable (and therefore unauthenticated) IP header fields include TOS, Flags, Fragment Offset, TTL and Header Checksum. AH operates directly on top of IP, using IP protocol number 51.

 

AH Wikipedia Definition

 

RFCs:

  • IP Authentication Header - RFC 4302
  • Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH) - RFC 4835
  • IP Encapsulating Security Payload (ESP) - RFC 4303

 

Also See:

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents