安全问题己经成为因特网进一步普及的一个关键。形式化分析方法是当前安全协议领域研究的热点。

本文首先分析了产生网络安全问题的各种因素,重点介绍了安全协议的一些特征，介绍了几个在安全协议发展中起着重要作用和有代表性的安全协议。

论文深入分析了TCP/IP、SPLCE/AS、IPSec等协议，分析了IKE协议的组成、IKE协商的过程、IKE消息的格式、协议安全性等。通过形式化的描述来分析协议的安全性。

通过本文对IPSec、IKE的介绍与分析，使我们对VPN的理解和实现能够达到一个更深的层次，并为进一步完善VPN提供了可能。

 

 

 

 

关键词: 协议安全，VPN，IKE, 安全关联，密钥交换

 

 

 

 

 

As we increasingly rely on information infrastructure to support critical application, fear of security breaches to has been a major reason for the business world's reluctance to embrace the Internet as a viable means of communication. Aplication of formal methods to analyze security protocols is an important research subject in cryptography.

 First this paper analysese the kinds of the factor which produce the problem of the network security。This paper discusses characteristics of security protocols and several important protocols in the development of this filed。

TCP/P, SPLCE/AS and IPSec architecture have been deeply studied in Chapter three. IKE protocol is introduced including the protocol framework, the process of negotiation, the format of IKE messages and the security performance of IKE protocol.

In conclusion, we can comprehend and implement the IPSec and IKE protocol more thoroughly and clearly through the introduction and analysis in the dissertation. More over, it can bring forward the probability of improvement of VPN

 

Key words: Security of protocol, VPN, IKE, Security Association, Key Exchange