Question about IKEv2 authentication

Secure Home | Search | About

Lost Password?

General Computer Security

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject	Author	Date
Question about IKEv2 authentication	Brian Pedersen	05-03-2006

Posted by Brian Pedersen on May 3, 2006, 4:46 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Hi

Hope this is the right group to ask or else please tell me where to ask.

I have a question about the AUTH part of the encrypted request the initiator
sends. The RFC document (4306) states that :
...the initiator signs the first message, starting with the first octet of
the first SPI in the header and ending with the last octet of the last
payload. Appended to this (for purposes of computing the signature) are the
responder's nonce Nr, and the value prf(SK_pi,IDi'). In the above
calculation, IDi' and IDr' are the entire ID payloads excluding the fixed
header....

How does the responder check that this signature is correct?

---

Brian

Similar Threads	Posted
CLARIFICATION IN IKEV2 AUTHENTCATION PAHSE 2	March 28, 2006, 10:13 am
SSL Server authentication, SSL client authentication, SSL connection and SSL session	August 14, 2006, 1:05 pm
WEP authentication, why WEP authentication scheme is flawed and how it can be attacked	August 1, 2006, 12:51 pm
IKE authentication	June 11, 2004, 8:50 am
P2P Authentication	October 25, 2005, 6:42 am
authentication (SRP*, DH, TLS)	April 14, 2006, 2:16 pm
authentication	September 21, 2006, 5:45 pm
Sign On Authentication	August 15, 2005, 7:56 pm
RSA SecurID authentication details	July 16, 2004, 12:53 pm
AD authentication via Nortel 450 switch	December 21, 2004, 1:17 pm

The site map in XML format XML site map