ESP is used to provide confidentiality, data origin authentication, connectionless integrity, an anti-replay service (a form of partial sequence integrity), and limited traffic flow confidentiality. http://www.ietf.org/rfc/rfc2406.txt.
| Field Name | Type | Description |
|---|---|---|
| Security_Parameters_Index0..1 | HexBinaryObjectPropertyType |
The SPI is an arbitrary 32-bit value that, in combination with the destination IP address and security protocol (ESP), uniquely identifies the Security Association for this datagram. http://www.ietf.org/rfc/rfc2406.txt. |
| Sequence_Number0..1 | HexBinaryObjectPropertyType |
This unsigned 32-bit field contains a monotonically increasing counter value (sequence number). |
| Payload_Data0..1 | HexBinaryObjectPropertyType |
Payload Data is a variable-length field containing data described by the Next Header field. |
| Padding0..1 | HexBinaryObjectPropertyType |
The padding field can be used for various reasons, such as to fill in the plaintext as required by an encryption algorithm or to conceal the actual length of the payload. |
| Padding_Len0..1 | HexBinaryObjectPropertyType |
The pad length indicates the number of pad bytes immediately preceding it. Range is 0-255, where a value of zero indicates that no padding bytes are present. http://www.ietf.org/rfc/rfc2406.txt. |
| Next_Header0..1 | IANAAssignedIPNumbersType |
Identifies the type data contained in the payload data field. Uses the same values as the IPv4 Protocol field. |
| Authentication_Data0..1 | HexBinaryObjectPropertyType |
The Authentication Data is a variable-length field containing an Integrity Check Value (ICV) computed over the ESP packet minus the Authentication Data. http://www.ietf.org/rfc/rfc2406.txt. |