[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ID payload in IKE phase I

To: ipsec@lists.tislabs.com
Subject: ID payload in IKE phase I
From: antonio.barrera@nokia.com
Date: Wed, 16 May 2001 15:09:54 +0300
Sender: owner-ipsec@lists.tislabs.com

	Even though the RFC 2409 says that the ID field is compulsory in all
modes, is there any problem in assuming that if not received it defaults to
the IP address of the peer host? It would be the same as if receiving the
ayload with the IP address.

Toni

-----Original Message-----
From: Barrera Antonio (NET/Barcelona) 
Sent: 16. May 2001 15:07
To: 'ipsec@lists.tislabs.com'
Subject: CR format in IKE


	Could someone tell me if this is correct?

In an IKE negotiation using RSA-signatures:

When sending a CR the payload contains the Subject name of the CA in used
and it's sent in its binary format (ASN.1 representation)
When receiving it, it must match the Issuer name of the certificate to be
sent.

Is there any error in this?

Tonino

Prev by Date: CR format in IKE
Next by Date: AES, AES-MAC
Prev by thread: CR format in IKE
Next by thread: AES, AES-MAC
Index(es):
- Main
- Thread