authentication

Click on the red underlined text to get to the source

2. IPsec tunnel mode configuration requirements

... security and simplicity in the IKE implementation. f. authentication where required ...

... to support configuration. Authentication Where DHCPv4 authentication ...

... Authentication Where DHCPv4 authentication [5] is required, this can be supported on an IPsec tunnel mode ...

5. Security Considerations

... remote host and the security gateway are authenticated and integrity protected. ...

... between the security gateway and the DHCP server, unless DHCP authentication is used. Note that authenticated ...

... DHCP authentication is used. Note that authenticated DHCP cannot be used as an access control mechanism. This is because a remote host ...

... remote host can always set its own IP address and thus evade any security measures based on DHCP authentication. As a result, the assigned address ...

8. References

... Droms, R. and W. Arbaugh, "Authentication for DHCP Messages", RFC 3118^prop, June 2001. ...

... Kent, S. and R. Atkinson, "IP Authentication Header", RFC 2402(-> 4305(-> 4835^prop) | 4302^prop), November 1998. ...

10. Appendix - IKECFG evaluation

... duplication of effort to address assignment. Instead, it will be tempting to also duplicate the configuration, authentication and fail-over facilities of DHCPv4 ...

... IKE. Authentication While IKECFG can support mutual authentication of the IPsec ...

... Authentication While IKECFG can support mutual authentication of the IPsec tunnel endpoints ...

... tunnel endpoints, it is difficult to integrate IKECFG with DHCPv4 authentication [5]. This is because the security gateway will not typically have access to the client ...

... credentials necessary to issue an DHCPv4 authentication option on the client's behalf. ...

A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W

Previous | Next

Frontpage | Contents | Keywords

RFC-Ref.org

Sister Sites

Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org