Title :
Implementation of Certificate Based Authentication in IKEv2 Protocol
Author :
Ana Kukec;Stjepan Gros;Vlado Glavinic
Author_Institution :
Faculty of Electrical and Computing Engineering, University of Zagreb, Unska bb, 10000 Zagreb, Croatia. E-Mail: ana.kukec@fer.hr
fDate :
6/1/2007 12:00:00 AM
Abstract :
IPsec is a security architecture for Internet, which is directly positioned on the top of the IP layer. The major part of IPsec consists of the Internet Key Exchange protocol, now in its version 2. IKEv2 offers authentication, authorization and key agreement services. One of the possible authentication mechanisms in this protocol is based on X509 certificates and the PKI infrastructure. As we are in the process of the IKEv2 protocol implementation, in this paper we describe experiences and design decisions taken during the implementation of the X509 certificate based authentication in the IKEv2 daemon.
Keywords :
"Authentication","Protocols","Security","Authorization","Peer to peer computing","Computer architecture","IP networks","Web and internet services","ISO standards","Data encapsulation"
Conference_Titel :
Information Technology Interfaces, 2007. ITI 2007. 29th International Conference on
Print_ISBN :
953-7138-09-7
DOI :
10.1109/ITI.2007.4283856
