[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DSS support?

To: "C. Harald Koch" <chk@utcc.utoronto.ca>
Subject: DSS support?
From: Tero Kivinen <kivinen@ssh.fi>
Date: Tue, 16 Jun 1998 02:55:57 +0300 (EET DST)
Cc: ipsec@tis.com
In-Reply-To: <98Jun9.150314edt.11651@janus.tor.securecomputing.com>
Organization: SSH Communications Security Oy
References: <98Jun9.150314edt.11651@janus.tor.securecomputing.com>
Sender: owner-ipsec@ex.tis.com

C. Harald Koch writes:
> Anyone out there got an ISAKMP implementation that implements DSS/DSA (pick
> your favourite acronym), and would be willing to to some over-the-net interop
> testing?

Our test site (http://isakmp-test.ssh.fi/) have also the DSS support
so you can use that to test against our toolkit. You have to configure
your site to accept our ca-key, and you can either send me PKCS#10
request of your key that I can send you back signed by our key, or you
have to check the "trust any certificate" flag on in the first page
(this will disable the check that the key is signed by correct ca, but
it still does other validity checks (validity period etc)). 
-- 
kivinen@iki.fi                               Work : +358-9-4354 3218
SSH Communications Security                  http://www.ssh.fi/
SSH IPSEC Toolkit                            http://www.ssh.fi/ipsec/

References:

DSS support?

From: "C. Harald Koch" <chk@utcc.utoronto.ca>

Prev by Date: RE: IKE COMMIT/CONNECTED processing
Next by Date: Re: Rest of World encryption hardware products?
Prev by thread: DSS support?
Next by thread: DNS and X.501 DistinguishedName
Index(es):
- Main
- Thread