[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on CRACK

To: Roy Pereira <royp@cisco.com>
Subject: Re: Comments on CRACK
From: "Steven M. Bellovin" <smb@research.att.com>
Date: Tue, 26 Oct 1999 14:58:07 -0400
Cc: Stephane Beaulieu <sbeaulieu@TimeStep.com>, Dan Harkins <dharkins@network-alchemy.com>, Moshe Litvin <moshe@checkpoint.com>, ipsec@lists.tislabs.com, ietf-ipsra@vpnc.org
Sender: owner-ipsec@lists.tislabs.com

In message <3815F49E.BFABF7C9@cisco.com>, Roy Pereira writes:

> 
> Let me ask everyone who is interested;  How do we support existing
> legacy user authentication within IKE without using a PKI ?

With a protocol that lets the customer download an encrypted private key/
certificate pair from a server, followed by ordinary IKE.

		--Steve Bellovin

Prev by Date: Re: Comments on CRACK
Next by Date: Re: Comments on CRACK
Prev by thread: RE: Comments on CRACK
Next by thread: RE: Comments on CRACK
Index(es):
- Main
- Thread