RFC 2406 · PROPOSED STANDARD · 1998
SUN · 14 JUN 2026
IP Encapsulating Security Payload
Overview
RFC 2406, “IP Encapsulating Security Payload”, is a Proposed Standard document published in November 1998 by S. Kent, R. Atkinson. It obsoletes RFC 1827. It has been obsoleted by RFC 4303, RFC 4305 — refer to the newer document for the authoritative version. The canonical text is published by the RFC Editor.
Abstract
The Encapsulating Security Payload (ESP) header is designed to provide a mix of security services in IPv4 and IPv6. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
Read this RFC
The canonical text of RFC 2406 is hosted at rfc-editor.org. Available in TXT,HTML.
Relationships to other RFCs
Other RFCs from 1998
- RFC 2405 The ESP DES-CBC Cipher Algorithm With Explicit IV
- RFC 2407 The Internet IP Security Domain of Interpretation for ISAKMP
- RFC 2404 The Use of HMAC-SHA-1-96 within ESP and AH
- RFC 2408 Internet Security Association and Key Management Protocol
- RFC 2403 The Use of HMAC-MD5-96 within ESP and AH
- RFC 2409 The Internet Key Exchange
- RFC 2402 IP Authentication Header
- RFC 2410 The NULL Encryption Algorithm and Its Use With IPsec