hipl-maintainer team mailing list archive

Thread
Date

[Bug 607592] Re: HIP Certificates are not checked if no middlebox is on the path.

To: hipl-maintainer@xxxxxxxxxxxxxxxxxxx
From: René Hummen <607592@xxxxxxxxxxxxxxxxxx>
Date: Fri, 24 Sep 2010 13:53:52 -0000
Reply-to: Bug 607592 <607592@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Please, explain in a bit more detail why this end-to-end certificate
verification is necessary in the PiSA scenario.

-- 
HIP Certificates are not checked if no middlebox is on the path.
https://bugs.launchpad.net/bugs/607592
You received this bug notification because you are a member of HIPL
maintainer team, which is a direct subscriber.

Status in Host Identity Protocol for Linux: New

Bug description:
The end-hosts should add and verify certificates for PiSA even if no middlebox is on the path. To this end, (for PiSA) the Responder should add a certificate to the R2 and the Initiator should verify it just as the middlebox would.