Question:
The attributes in IPsec for Authentication Header protocol in transport mode from left to right are :
A. IPsec header
B. Padding
C. Authentication header
D. Rest of original packet
Choose the correct answer from the options given below :
The attributes in IPsec for Authentication Header protocol in transport mode from left to right are :
A. IPsec header
B. Padding
C. Authentication header
D. Rest of original packet
Choose the correct answer from the options given below :
A. IPsec header
B. Padding
C. Authentication header
D. Rest of original packet
Choose the correct answer from the options given below :
Show Hint
In Transport Mode, think of IPsec as a "sandwich filling." The original IP Header stays on top (left), the AH is added in the middle, and the original data follows. Padding always goes at the very end to round off the size.
Updated On: Jun 6, 2026
- D, C, A, B
- A, C, D, B
- D, C, B, A
- A, C, B, D
Show Solution
Verified By Collegedunia
The Correct Option is B
Solution and Explanation
The IPsec Authentication Header (AH) protocol provides data integrity and authentication for IP packets. In transport mode, the AH is inserted into the IP packet between the IP header and the upper-layer protocol.
1. Transport Mode Structure:
In transport mode, IPsec protects the payload of the IP packet. The original IP header is preserved but modified to reflect the presence of the AH. The sequence of components from left to right (start of the packet to the end) is as follows:
• Original IP Header (A): This remains at the front of the packet.
• Authentication Header (C): The AH is inserted immediately after the IP header.
• Rest of Original Packet (D): This contains the transport layer header (TCP/UDP) and the application data.
• Padding (B): If necessary, padding is added to the end of the payload to meet block size requirements for the authentication algorithm. 2. Mapping to Options: Based on the standard construction of an AH transport-mode packet, the order is: IPsec Header (Original IP Header) $\to$ Authentication Header $\to$ Rest of original packet $\to$ Padding. 3. Conclusion: This corresponds to the sequence A, C, D, B, which is represented by Option (2).
• Original IP Header (A): This remains at the front of the packet.
• Authentication Header (C): The AH is inserted immediately after the IP header.
• Rest of Original Packet (D): This contains the transport layer header (TCP/UDP) and the application data.
• Padding (B): If necessary, padding is added to the end of the payload to meet block size requirements for the authentication algorithm. 2. Mapping to Options: Based on the standard construction of an AH transport-mode packet, the order is: IPsec Header (Original IP Header) $\to$ Authentication Header $\to$ Rest of original packet $\to$ Padding. 3. Conclusion: This corresponds to the sequence A, C, D, B, which is represented by Option (2).
Was this answer helpful?
0
0
Top CUET PG Data Science A.I Cyber Security and Computer Sci. Questions
- Choose the correct answer from the options given below:
(A). RAID 3 requires only a single redundant disk.
(B) In RAID 4 scheme, two different parity calculations are carried out and stored in separate blocks on different disks.
(C) RAID 5 distributes the parity strips across all disks.
(D) In RAID 2, the number of redundant disks are proportional to the log of the number of data disks. - In case of DMA, after the completion of the transfer, the processor is required to be notified of the completion. This is done through.
- In a two-level memory hierarchy, the access time of the cache memory is 12 nsec and the access time of the main memory is 1.5 msec. The hit ratio is 0.98. What is the average access time of the two-level memory system?
- Match List I with List II.
List I List II A. Supervisor mode I. Entered when the processor encounters a software interrupt instruction B. Abort Mode II. Entered in response to memory fault C. Fast Interrupt Mode III. Entered whenever the processor receives an interrupt signal from a designated fast interrupt source D. Interrupt Mode IV. Entered whenever the processor receives an interrupt signal from any other source - Deallocation of stack of thread and register contexts will take place.
View More Questions
Top CUET PG Cryptography & Network Security Questions
- Which is not a requirement of digital signatures:
- Rail fence technique is an example of:
- In the DES algorithm, the round input is 32 bits, which is expanded to 48 bits via:
- The best-known multiple-letter encryption cipher is:
- Computation of the discrete logarithm is the basis of the cryptographic system:
View More Questions
Top CUET PG Questions
- Given below are two statements:
Statement I: For Plato the meaning of the word 'Justice' is basically a conception in the mind only.
Statement II: For Plato the meaning of the word 'Justice' is fixed, mind-independently
In the light of the above statements, choose the correct answer from the options given below: - What is the electron count of OS6CO182-?
- XeF4 hydrolysis gives A + B, HF, and Oxygen. Find A and B
- What is more basic in pyrol and pyridine?
- Hydrolysis of Al2C3, Be2?
View More Questions