First page Back Continue Last page Overview Graphics
Similarities to GSSAPI
SEE RFC2743, section 2.2.1. GSS_Init_sec_context() claimant_cred_handle and targ_name arguments.
(targ_name is optional in BTNS API --- the system can determine it. But it is required in GSSAPI, because the system has no default).
RFC2743, section 2.2.2. GSS_Accept_sec_context() acceptor_cred_handle.
iToken is similar to GSS "NAME" object
IPSEC_BTNS_CREDENTIAL is similar to GSS "CREDENTIAL HANDLE"
pToken is similar to GSS "CONTEXT HANDLE"
Use Case 5 and Use Case 6 is not easily implemented for systems using connection-latching-01 section 2.2: "Latching through PAD manipulations (and extensions)"
easily done with section 2.1: "Using Intimate Interfaces Between ULPs and IPsec"