IKE Challenge/Response for Authenticated Cryptographic Keys

Document Type Expired Internet-Draft (individual)
Authors Derrell Piper  , Brian Korver  , Dan Harkins 
Last updated 1999-10-20
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This memo describes a new exchange a la [HC98] which provides for authentication when one side is using a unidirectional authentication technique such as RADIUS, SecurID, or OTP (hereafter referred to, for convenience, as 'legacy authentication methods'). The protocol described here is to be used as a


Derrell Piper (ddp@network-alchemy.com)
Brian Korver (briank@terisa.com)
Dan Harkins (dharkins@lounge.org)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)