[Users] RSA without CA : cisco rsa-sig/rsa-encr

From: Thierry Boivin (Thierry.Boivin_at_celsecat.com)
Date: Thu Oct 31 2002 - 18:45:06 CET

• Next message: Javier García de Bringas: "[Users] IPSec over NAT"
• Previous message: Danny Retel: "Re: [Users] REDHAT compil Freeswan"
• Next in thread: Joe Patterson: "RE: [Users] RSA without CA : cisco rsa-sig/rsa-encr"
• Reply: Joe Patterson: "RE: [Users] RSA without CA : cisco rsa-sig/rsa-encr"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,

I am trying to build a basic interop test case with freeswan <-> cisco ios, using RSA keys.
One of the basic case was to test it using RSA keys but without the help of certificates. After investigation, my opinion is that using RSA without certificates is only supported on cisco if using "RSA encrypted nonces authentication method" (rsa-encr flag) ... which is an unsupported authentication method for freeswan.

As the question has already been asked on this list (see archive : Aug 2002) with an opposite opinion, i would be very interested by any information regarding the case.

        Thierry Boivin.

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Javier García de Bringas: "[Users] IPSec over NAT"
• Previous message: Danny Retel: "Re: [Users] REDHAT compil Freeswan"
• Next in thread: Joe Patterson: "RE: [Users] RSA without CA : cisco rsa-sig/rsa-encr"
• Reply: Joe Patterson: "RE: [Users] RSA without CA : cisco rsa-sig/rsa-encr"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Fri Nov 01 2002 - 05:20:36 CET