IP security (IPSec) is a set of protocols developed by the Internet Engineering Task Force (IETF) to provide data authentication, integrity, and CONFIDENTIALITY between two communication points over an IP network. It also specifies the encryption, decryption, and authentication of packets. It defines the protocols for secure key management and key exchange.

It is MADE up of the following components:

• Encapsulating Security Payload (ESP): Data integrity, encryption, authentication, and anti-replay are all supplied by the Encapsulating Security Payload (ESP). Payload authentication is also supported.
• Header of Authentication (AH): Data integrity, authentication, and anti-replay are also supported by this header, but not encryption. Unwanted packet transmission is protected by anti-replay protection. It does not guarantee data privacy.
• IKE (Internet Key Exchange): IKE (Internet Key Exchange) is a network security protocol that allows two devices to communicate across a Security Association by dynamically exchanging encryption keys (SA). The Security Association (SA) creates common security features between two network entities to facilitate secure communication. IKE (Internet Key Exchange) secures message content and provides an open framework for implementing standard algorithms such as SHA and MD5. The IP sec users of the technique assign a UNIQUE IDENTIFIER to each packet. Using this identifier, the device can assess whether a packet is correct or not. Unauthorized packets are discarded and do not reach their intended receiver.