Which protocol encrypts packets and provides both data integrity and confidentiality?

The correct choice is the Encapsulating Security Payload (ESP), which is designed specifically for securing network communications by providing both confidentiality and data integrity through encryption and cryptographic hashing.

ESP operates at the network layer and is often used in conjunction with the Internet Protocol Security (IPsec) suite. It encrypts the payload of each packet, ensuring that the data remains confidential as it moves through untrusted networks. This is achieved using symmetric encryption algorithms, which protect the data from unauthorized access. In addition to encryption for confidentiality, ESP also ensures data integrity by using a hashing algorithm like HMAC (Hash-Based Message Authentication Code). This helps in verifying that the data has not been altered during transmission.

By combining these two features—encryption for confidentiality and hashing for integrity—ESP is a comprehensive solution that secures the data packets in transit, making it essential for creating a secure communication framework in various networking scenarios.