summaryrefslogtreecommitdiff
path: root/usr.bin
diff options
context:
space:
mode:
authorNiklas Hallqvist <niklas@cvs.openbsd.org>2000-06-08 20:49:45 +0000
committerNiklas Hallqvist <niklas@cvs.openbsd.org>2000-06-08 20:49:45 +0000
commitc204deecaa6bf82af180d6572c9e114802efcd2a (patch)
tree15a19b584add82ad5c7f527123dc5cc98756d098 /usr.bin
parent2b6b82a6372d5fd0d03c82e54cdbfcab3519ac4d (diff)
cert.h: Merge with EOM 1.7
exchange.h: Merge with EOM 1.27 x509.h: Merge with EOM 1.10 author: angelos Allow exchange of KeyNote credentials over IKE. Multiple credentials may be passed in a single CERT payload. KeyNote is used if a directory named as the local ID we use in an exchange exists in the KeyNote directory (default: /etc/isakmpd/keynote/). Note that asymmetric credentials are possible (use KeyNote in one direction and X509 in the other); such authentication is envisioned to be the most common: the clients will use KeyNote credentials to authenticate and authorize with a server, whilst the server will just provide an X509 certificate proving its binding to the IP address or ID. Totally asymmetric authentication (e.g., shared key in one direction, RSA in the other) is not supported by the IKE protocol.
Diffstat (limited to 'usr.bin')
0 files changed, 0 insertions, 0 deletions