diff options
Diffstat (limited to 'testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt')
-rw-r--r-- | testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt b/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt new file mode 100644 index 000000000..fb8449068 --- /dev/null +++ b/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt @@ -0,0 +1,11 @@ +The roadwarriors <b>carol</b> and <b>dave</b> set up a connection to gateway <b>moon</b>. +At the outset the gateway authenticates itself to the clients by sending +an IKEv2 <b>RSA signature</b> accompanied by a certificate. +The roadwarrios then use the <i>Extensible Authentication Protocol</i> +in association with an <i>MD5</i> challenge and response protocol +(<b>EAP-MD5</b>) to authenticate against the gateway <b>moon</b> and includes +a <b>Postquantum Preshared Key (PPK)</b> that's also mixed into the +derived key material. The PPK_ID used by <b>dave</b> is unknown to <b>moon</b> +but since both peers don't enforce the use of a PPK they fall back to regular +authentication by use of the authentication data provided in the NO_PPK_AUTH +notify. |