[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

help

To: ipsec@lists.tislabs.com
Subject: help
From: "zhangdongyan" <myredapple-@163.net>
Date: Fri, 30 Mar 2001 09:23:05 +0800 (CST)
Sender: owner-ipsec@lists.tislabs.com

Dear sir:
    We are students of Harbin Institute of Technology of China.Now we are learning IPSec Protocol.

    We are have questions about IKE:

  1.IKE Phase 1 Authenticated With Digital Signature:
    According to the RFC “The Internet IP Security Domain of Interpretation for 
“ISAKMP”, When an IKE exchange is authenticated using certificates (of any format), any ID's used for input to local policy decisions SHOULD be contained in the certificate used in the authentication of the exchange, what we would like to know is Identification Data which is in Identification Payload is equal to which part of certificates?
  2.IKE Phase 1 Authenticated With Public Key Encryption:
    Is Identification data to know by each other in advance? Is Identification 
data used to find the other’s public key and how to find the public key?
  3.IKE Phase 2
    Why initiator has two ID Payloads which are IDci and IDcr and How the 
initiator know the IDcr data? Is it necessary to have two ID Payloads by responder and send to the initiator? Could you tell me the answer in detail?
   We are sorry for taking trouble for you. We want to understand the IKE quickly
  so we are looking forward to hearing from you as soon as possible. Thank you 
for your attention.

Best Regards,

Zhang Dongyan
Email:myredapple-@163.net
Hou Rui
Email:hithourui@yahoo.com.cn






===============================================
为你而建，为你而设，让你传递真心真意 

     ---- 163.net贺卡站（http://ecard.163.net）

163电子邮局全新奉献，精彩无限的电子贺卡站。
===============================================

Prev by Date: Re: SCTP and IPsec issues
Next by Date: Re: SCTP and IPsec issues
Prev by thread: No Subject
Next by thread: FreeS/WAN RedHat compilation Problems
Index(es):
- Main
- Thread