summaryrefslogtreecommitdiff
path: root/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt
diff options
context:
space:
mode:
Diffstat (limited to 'testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt')
-rw-r--r--testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt11
1 files changed, 11 insertions, 0 deletions
diff --git a/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt b/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt
new file mode 100644
index 000000000..fb8449068
--- /dev/null
+++ b/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt
@@ -0,0 +1,11 @@
+The roadwarriors <b>carol</b> and <b>dave</b> set up a connection to gateway <b>moon</b>.
+At the outset the gateway authenticates itself to the clients by sending
+an IKEv2 <b>RSA signature</b> accompanied by a certificate.
+The roadwarrios then use the <i>Extensible Authentication Protocol</i>
+in association with an <i>MD5</i> challenge and response protocol
+(<b>EAP-MD5</b>) to authenticate against the gateway <b>moon</b> and includes
+a <b>Postquantum Preshared Key (PPK)</b> that's also mixed into the
+derived key material. The PPK_ID used by <b>dave</b> is unknown to <b>moon</b>
+but since both peers don't enforce the use of a PPK they fall back to regular
+authentication by use of the authentication data provided in the NO_PPK_AUTH
+notify.