[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: question on IKE between HA & FA in 3GPP standard...
If indeed this is what the document says, "Certificate authentication
without Signature Payload", this points to Authentication with
a Revised Mode of Public Key Encryption where Certificate payload
may be used.
You may want to check with the authors of that document to find
the rationale behind it.
Atul
> -----Original Message-----
> From: ext Suresh Iyer [mailto:siyer@megisto.com]
> Sent: Thursday, December 05, 2002 10:29 AM
> To: ipsec@lists.tislabs.com
> Subject: question on IKE between HA & FA in 3GPP standard...
>
>
> Hi,
> I am trying to identify the requirements for IKE between Foreign
> Agent & Home Agent.
> In the Annex A to the 3GPP2 Wireless IP network standard,
> 3GPP2 P.S0001-B,
> it is specified that
> aggressive mode be used with preshared keys and main mode be used with
> Certificate authentication.
>
> It also specifies that "Signature payload" will not be sent
> by PDSN (FA) and
> HA.
>
> Does this mean that the certificate authentication is to be done with
> "public key encryption" and not "signatures"?
>
>
> Suresh Iyer
> Principal Engineer
> Megisto Systems Inc
> Germantown
> MD-20874
>