IKE Base Mode

Document Type Expired Internet-Draft (ipsec WG)
Authors Sara Bitan  , Yael Dayan 
Last updated 2000-01-19
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes a new Phase I mode for IKE [RFC-2409] based on the ISAKMP [RFC-2408] Base Exchange. The purpose of this new exchange is to allow support of all authentication methods with fixed and non-fixed IP addresses, while offering protection against a denial of service attack aimed at costly operations. It also enables negotiation capabilities beyond those offered by Aggressive Mode (DH/EC group). The exchange consists of only four messages and therefor is useful when performance is crucial.


Sara Bitan (sarab@cs.technion.ac.il)
Yael Dayan (yael@radguard.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)