Security association


Security association

A security association (SA) is the establishment of shared security information between two network entities to support secure communication. An SA may include cryptographic keys, initialization vectors or digital certificates.

An SA is a simplex (one-way channel) and logical connection which endorses and provides a secure data connection between the network devices. The fundamental requirement of an SA arrives when the two entities communicate over more than one channel. Take an example of mobile subscriber and a base station. The subscriber may subscribe itself for more than one service. Therefore each service may have different service primitives like a data encryption algorithm, public key or initialization vector. Now to make things easier, all this security information is grouped logically. This logical group itself is a Security Association. Each SA has its own ID called SAID. So now the base station and mobile subscriber will share the SAID and they will derive all the security parameters, making things a lot easier.

In a nutshell, an SA is a logical group of security parameters, that ease the sharing of information to another entity.

A Types

Two basic types of SAs are as follows:

Transport mode

:"See main article: Transport mode

Tunnel mode

:"See main article: Tunnel mode

ee also

*IPsec
*Internet Key Exchange (IKE)

References

*Internet Key Exchange Protocol - RFC 2409
*Internet Key Exchange (IKEv2) Protocol - RFC 4306


Wikimedia Foundation. 2010.

Look at other dictionaries:

  • Security Association — Eine Security Association (SA, dt. Sicherheitsverbindung) ist eine Vereinbarung zwischen zwei kommunizierenden Einheiten in Rechnernetzen. Sie beschreibt, wie die beiden Parteien Sicherheitsdienste anwenden werden, um sicher miteinander… …   Deutsch Wikipedia

  • Security Association Identifier — (SAID) est un identifiant configurable de VLAN. Il permet d’identifier à quel VLAN appartient un paquet. Voir aussi Sécurité du système d information Portail de la sécurité informatique …   Wikipédia en Français

  • Internet Security Association and Key Management Protocol — ISAKMP (Internet Security Association and Key Management Protocol) is a protocol for establishing Security Associations (SA) and cryptographic keys in an Internet environment. The protocol is defined by RFC 2408. Overview ISAKMP defines the… …   Wikipedia

  • Information Systems Security Association — The Information Systems Security Association (ISSA) is a not for profit, international professional organization of information security professionals and practitioners. It provides educational forums, publications and peer interaction… …   Wikipedia

  • International Social Security Association — The International Social Security Association (ISSA) [http://www.issa.int] is the principal international organization bringing together national social security administrations and agencies. Founded in 1927, the ISSA has 350 member organizations …   Wikipedia

  • Australian Information Security Association — The Australian Information Security Association (AISA) was originally formed in 1999 as the Information Security Interest Group (ISIG). It was incorporated in 2001 and changed its name to the current one in 2005. Branches exist in Sydney,… …   Wikipedia

  • International Computer Security Association — ICSA Labs (International Computer Security Association) began as NCSA (National Computer Security Association). In its early days, NCSA focused almost solely on the certification of anti virus software. Using the Consortia model, NCSA worked… …   Wikipedia

  • Internet Security Association and Key Management Protocol — (ISAKMP) es un protocolo criptográfico que constituye la base del protocolo de intercambio de claves IKE. Está definido en el RFC 2408. ISAKMP define los procedimientos para la autenticación entre pares, creación y gestión de asociaciones de… …   Wikipedia Español

  • Internet Security Association and Key Management Protocol — ISAKMP im TCP/IP‑Protokollstapel: Anwendung ISAKMP Transport UDP TCP Internet IP (IPv4, IPv6) Netzzugang Ethernet …   Deutsch Wikipedia

  • German European Security Association — (GESA) Zweck: Sicherheitspolitik Vorsitz: Christian Ehler Gründungsdatum: 2007 Mitgliederzahl: 80 Sitz: Berlin Website …   Deutsch Wikipedia


Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”

We are using cookies for the best presentation of our site. Continuing to use this site, you agree with this.