| IKE (Internet key exchange) is always used in IPsec. For the identity must be authenticated, an authentication method should be negotiated between the communicating sides. The authentication method define when and how to exchange the payloads. IKE has defined four kinds of authentication methods, and Certificate is used in three authentication methods. So it is important and valuable that the research of how to use PKI in IKE.The main problem can be divided into two parts. The first is about how to get Certificate and private key, store and read public key and private key. They provide the foundation of how to use PKI in IKE. The Second is about how to use Certificate in the three authentication methods.In this article, Certificate and private key is researched. Including Certificate and private key's data structure, and how to store and read public key and private key. Then expound a project about Certificate application, Certificate and private key stored, public key and private key reading.By using this project, three kinds of authentication methods are add into the router which is developed by Graduate School of National University of Defense Technology. |
PDF Full Text Request