Hello Mugur, strongSwan only supports SHA-1 with the RSA Digital Signature AUTH payload but we are planning to support
http://tools.ietf.org/html/draft-kivinen-ipsecme-signature-auth-05 as soon as the "Signature Authentication in IKEv2" RFC is goint to be published. Best regards Andreas On 28.03.2014 15:09, ABULIUS, MUGUR (MUGUR) wrote:
Hello, Can you please specify if StrongSwan supports for IKEv2 Authentication Payload RSA Digital signatures using SHA-256 as hash function? The RFC 5596 (IKEv2) at “§3.8 Authentication Payload” makes reference to RSAES-PKCS1-v1_5 signature scheme for which the RFC 3447 includes SHA-256. Best Regards Mugur
====================================================================== Andreas Steffen [email protected] strongSwan - the Open Source VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]==
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
