look at the rfc 2401-2412
ipsec uses several cryptographic algorithms. ike (the key negociation
protocol) use Diffie-hellman and may use RSA for the certification.
the RSA algorithm shouldnt be a 'must' in a rfc because it isnt currently
>Where's the "core" RFC/ID of IPsec? I did a quick search and found
>several sources of information but not one that looked as if it was the
>"non-extended core" of what IPsec really is.
>What I'm trying to find out is what algorithm IPsec will use, I thought
>it would be RSA but now I just saw some software that used D/H-keys.
>Surely there must be a "must" stating what algorithm it must support and
>that ought to be RSA, right?