IPsec
E23863
IPsec is a suite of protocols that provides secure, encrypted communication over IP networks by authenticating and protecting the integrity and confidentiality of data packets.
All labels observed (9)
| Label | Occurrences |
|---|---|
| IPsec canonical | 28 |
| IPSec | 3 |
| Internet Protocol Security | 2 |
| IP Security (IPSec) | 1 |
| IPsec (in some profiles) | 1 |
| IPsec VPNs | 1 |
| IPsec tunnels | 1 |
| Internet Key Exchange | 1 |
| WireGuard | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T187694 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: IPsec Context triple: [Internet Protocol version 6, supportsFeature, IPsec]
-
A.
IEEE 802.1AE MACsec standard
The IEEE 802.1AE MACsec standard is a network security protocol that provides data confidentiality, integrity, and origin authenticity for Ethernet traffic at the media access control (MAC) layer.
-
B.
Wi‑Fi Protected Access
Wi‑Fi Protected Access is a family of security protocols designed to protect wireless computer networks by providing stronger data encryption and user authentication than earlier Wi‑Fi standards.
-
C.
Diffie–Hellman key exchange
Diffie–Hellman key exchange is a foundational cryptographic protocol that enables two parties to securely establish a shared secret over an insecure communication channel.
-
D.
TLS
TLS (Transport Layer Security) is a cryptographic protocol that secures data transmitted over networks by providing encryption, authentication, and integrity between communicating applications.
-
E.
Wired Equivalent Privacy
Wired Equivalent Privacy (WEP) is an early and now largely obsolete Wi‑Fi security protocol known for its weak encryption and significant vulnerabilities.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: IPsec Target entity description: IPsec is a suite of protocols that provides secure, encrypted communication over IP networks by authenticating and protecting the integrity and confidentiality of data packets.
-
A.
IEEE 802.1AE MACsec standard
The IEEE 802.1AE MACsec standard is a network security protocol that provides data confidentiality, integrity, and origin authenticity for Ethernet traffic at the media access control (MAC) layer.
-
B.
Wi‑Fi Protected Access
Wi‑Fi Protected Access is a family of security protocols designed to protect wireless computer networks by providing stronger data encryption and user authentication than earlier Wi‑Fi standards.
-
C.
Diffie–Hellman key exchange
Diffie–Hellman key exchange is a foundational cryptographic protocol that enables two parties to securely establish a shared secret over an insecure communication channel.
-
D.
TLS
TLS (Transport Layer Security) is a cryptographic protocol that secures data transmitted over networks by providing encryption, authentication, and integrity between communicating applications.
-
E.
Wired Equivalent Privacy
Wired Equivalent Privacy (WEP) is an early and now largely obsolete Wi‑Fi security protocol known for its weak encryption and significant vulnerabilities.
- F. None of above. chosen
Statements (52)
| Predicate | Object |
|---|---|
| instanceOf |
Internet protocol security standard
ⓘ
network security protocol suite ⓘ |
| abbreviationOf |
IPsec
self-linksurface differs
ⓘ
surface form:
Internet Protocol Security
|
| canBeUsedFor |
host-to-host VPN
ⓘ
remote access VPN ⓘ site-to-site VPN ⓘ |
| canOperateThrough | NAT (with NAT traversal) ⓘ |
| commonlyUsesAlgorithm |
3DES
ⓘ
AES ⓘ HMAC ⓘ
surface form:
HMAC-SHA1
HMAC-SHA2 ⓘ |
| definedBy |
Internet Engineering Task Force
ⓘ
surface form:
IETF
|
| fullName |
IPsec
self-linksurface differs
ⓘ
surface form:
Internet Protocol Security
|
| hasComponent |
AH
ⓘ
ESP ⓘ IKE ⓘ |
| hasExtension | NAT-T ⓘ |
| hasVersion |
IKEv1
ⓘ
IKEv2 ⓘ |
| isBackwardCompatibleWith | IPv4 security extensions ⓘ |
| isImplementedIn |
VPN gateways
ⓘ
firewalls ⓘ operating systems ⓘ routers ⓘ |
| isMandatoryFor | IPv6 implementation (original specification) ⓘ |
| isUsedIn |
VPNs
ⓘ
secure branch office connectivity ⓘ secure site-to-site connectivity over the Internet ⓘ |
| operatesAtLayer | network layer ⓘ |
| operatesOn |
IP
ⓘ
IPv4 ⓘ IPv6 ⓘ |
| provides |
anti-replay protection
ⓘ
authentication ⓘ confidentiality ⓘ integrity ⓘ |
| securityReliesOn |
public key infrastructure
ⓘ
shared secret keys ⓘ |
| standardizedIn |
RFC 2401
ⓘ
RFC 4301 ⓘ |
| supports | Perfect Forward Secrecy ⓘ |
| supportsMode |
transport mode
ⓘ
tunnel mode ⓘ |
| usesConcept |
Security Association
ⓘ
Security Parameter Index ⓘ Security Policy Database ⓘ |
| usesCryptography |
asymmetric cryptography
ⓘ
hash functions ⓘ symmetric encryption ⓘ |
| usesProtocol |
Authentication Header
ⓘ
Encapsulating Security Payload ⓘ IPsec self-linksurface differs ⓘ
surface form:
Internet Key Exchange
|
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: IPsec Description of subject: IPsec is a suite of protocols that provides secure, encrypted communication over IP networks by authenticating and protecting the integrity and confidentiality of data packets.
Referenced by (39)
Full triples — surface form annotated when it differs from this entity's canonical label.