As networks develop, there has been considerable growth in all types of data, voice, and video information exchanged on networks. In addition, new services, such as E-commerce, online conferencing and auctions, video on demand (VoD), and e-learning have sprung up increasingly, requiring higher information security than before. Carriers must protect data packets from being illegally obtained or modified by attackers and prohibit unauthorized users from accessing network resources. RIP packet authentication effectively meets these security requirements.
Simple authentication: The authenticated party adds the configured password directly to packets for authentication. This authentication mode provides the lowest password security.
MD5 authentication: The authenticated party uses the Message Digest 5 (MD5) algorithm to generate a ciphertext password and adds it to packets for authentication. This authentication mode improves password security. For the sake of security, using the HMAC-SHA256 algorithm rather than the MD5 algorithm is recommended.
Keychain authentication: The authenticated party configures a keychain that changes over time. This authentication mode further improves password security.
Keychain authentication improves RIP security by periodically changing the password and the encryption algorithms. For details about Keychain, see "Keychain" in NetEngine 8000 F Feature Description - Security.
HMAC-SHA256 authentication: The authenticated party uses the HMAC-SHA256 algorithm to generate a ciphertext password and adds it to packets for authentication.
RIP authentication ensures network security by adding an authentication field used to encrypt a packet before sending the packet to ensure network security. After receiving a RIP packet from a remote router, the local router discards the packet if the authentication password in the packet does not match the local authentication password. This authentication mode protects the local router.
On IP networks of carriers, RIP authentication ensures the secure transmission of packets, improves the system security, and provides secure network services for carriers.