Profile for Certificate Use in IKE version 1
draft-hoffman-pki4ipsec-profile-00

Document Type Expired Internet-Draft (individual)
Last updated 2003-12-23
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-hoffman-pki4ipsec-profile-00.txt

Abstract

The use of certificates for authenticating the creation of IPsec security associations has long been fraught with difficulty. The specifications in IKE version 1 are sometimes ambiguous about important issues, and developers of IPsec systems are often unprepared to deal with the complexities of PKIX certificates and certificate handling. This document is a profile of certificate use in IPsec whose primary goal is to greatly increase interoperability while maintaining high security.

Authors

Paul Hoffman (paul.hoffman@vpnc.org)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)