Internet Archive Scholar

Implementation of Certificate Based Authentication in IKEv2 Protocol

Ana Kukec, Stjepan Gros, Vlado Glavinic
2007 Information Technology Interfaces  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (114.0 kB)
https://web.archive.org/web/20170811201645/http://www.zemris.fer.hr/~sgros/publications/conferences/iti2007.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL. The file type is application/pdf.

IPsec is a security architecture for Internet, which is directly positioned on the top of the IP layer. The major part of IPsec consists of the Internet Key Exchange protocol, now in its version 2. IKEv2 offers authentication, authorization and key agreement services. One of the possible authentication mechanisms in this protocol is based on X509 certificates and the PKI infrastructure. As we are in the process of the IKEv2 protocol implementation, in this paper we describe experiences and
more » ... n decisions taken during the implementation of the X509 certificate based authentication in the IKEv2 daemon. IPsec is a security architecture for Internet, which is directly positioned on the top of the IP layer. The major part of IPsec consists of the Internet Key Exchange protocol, now in its version 2. IKEv2 offers authentication, authorization and key agreement services. One of the possible authentication mechanisms in this protocol is based on X509 certificates and the PKI infrastructure. As we are in the process of the IKEv2 protocol implementation, in this paper we describe experiences and design decisions taken during the implementation of the X509 certificate based authentication in the IKEv2 daemon.
doi:10.1109/iti.2007.4283856 fatcat:b5oxcr7vvbd6pf72cn5tpnjq4a
Citation

Ana Kukec, Stjepan Gros, Vlado Glavinic. "Implementation of Certificate Based Authentication in IKEv2 Protocol." Information Technology Interfaces (2007)