certificate

Click on the red underlined text to get to the source

... roaming) where it may be desirable to define a distinct certificate hierarchy for use in a AAA deployment. In order to ...

... requirements on the NAS to support certificates. It is also suggested that inter-domain traffic ...

... Additional security information, when needed (e.g., keys, certificates) ...

... address records, the requestor gives up. If the server is using a site certificate, the domain name in the query ...

... domain name in the replacement field MUST both be valid based on the site certificate handed out by the server in the TLS ...

... SRV record MUST both be valid based on the same site certificate. Otherwise, an attacker could modify the DNS records ...

... have obtained a valid TLS certificate, and secured RRs may be included in the DNS ...

... OIDs within TLS or IKE certificates so as to signify Diameter Server authorization ...

... domain exchanges. For NAS devices without certificate support, pre- shared keys can be used between the NAS and a local AAA ...

... authentication using a pre-shared key, and MAY support certificate- based peer authentication using digital signatures ...

... IKE negotiator SHOULD use IKE Certificate Request Payload(s) to specify the certificate authority (or authorities ...

... IKE Certificate Request Payload(s) to specify the certificate authority (or authorities) that are trusted in accordance with its local policy. IKE ...

... accordance with its local policy. IKE negotiators SHOULD use pertinent certificate revocation checks before accepting a PKI ...

... revocation checks before accepting a PKI certificate for use in IKE's authentication procedures. ...

... the Diameter node acting as TLS server must request a certificate from the Diameter node acting as TLS ...

... acting as TLS client MUST be prepared to supply a certificate on request. ...

... Diameter peer is essential to security. When certificates are used, it is necessary to configure the root certificate authorities ...

... certificates are used, it is necessary to configure the root certificate authorities trusted by the Diameter peer. These root CAs ...

... Diameter peer will typically not be configured to allow connectivity with any arbitrary peer. When certificate authentication Diameter ...

... Since TLS supports application-level granularity in certificate policy, TLS SHOULD be used to protect Diameter connections ...

RFC-Ref.org

Sister Sites