FCPAP is an optional password-based authentication and key exchange protocol used on Fibre channel networks. FCPAP is used to authenticate the ports of the fiber chain. It is not easy to use passwords instead of long cryptographic keys to authenticate the flow of key exchange protocols. For example, a password cannot simply replace a strong symmetrical key as an input for a conventional key exchange protocol. There are two main reasons for this. This type of attack is probably the most important to avoid in the design of the PAKE, because an attacker does not need to be online to execute it. Offline attackers have more time and computing power for the simple reason that they cannot be interrupted. In the example above, it was only necessary for the opponent to record an exchange. From there, there is no way to disrupt the opponent`s behavior. We call these attacks offline dictionary attacks. To prevent them, it is necessary that the protocol does not indicate a single information about the underlying password, even if the attacker introduces the protocol and injects his own data while trying to impertimized a party.
This has an important consequence for authentication; We will come back to that later. A naïve example of a key exchange protocol is that a party writes a secret key, puts it in an unman manipulated envelope and sends it to the recipient. If the envelope is intact, the secret key can be used by both parties to decrypt the messages. AuthIP performs mutual authentication between two peers. It sets security data that allows you to continue to set up SAs for ESP and AH traffic. This is a requirement/response protocol, i.e. the peer on the move sends an au pair message that responds. The peer who responds then returns an au pair message that sends it. AuthIP is usually used to negotiate the ESP mode of transport between two peers, but you can also use it to protect AH traffic. The key agreement refers to a key exchange form (see also key key) in which two or more users execute a protocol in order to safely release a resulting key value.
An important transport protocol can be used as an alternative to the key agreement. The distinguishing feature of a key MOU is that participating users contribute equally to the calculation of the resulting common key value (unlike a user who calculates and distributes a key value to other users). The key management protocol has the following features: Many key exchange systems have a part that generates the key and simply send that key to the other party — the other party has no influence on the key. The use of a key MEMORANDUM of understanding avoids some of the major distribution problems associated with these systems.