In the sender, the authentication data is generated in 3 steps.
- A checksum is calculated for the complete package using a hash algorithm.
- This checksum is once again sent through a hash algorithm together with a key known to both the sender and the recipient.
- This results in the required authentication data which is inserted in the AH header.