Annotation of embedaddon/strongswan/testing/tests/swanctl/rw-eap-md5-id-rsa-ppk/description.txt, revision 1.1
1.1 ! misho 1: The roadwarriors <b>carol</b> and <b>dave</b> set up a connection to gateway <b>moon</b>.
! 2: At the outset the gateway authenticates itself to the clients by sending
! 3: an IKEv2 <b>RSA signature</b> accompanied by a certificate.
! 4: The roadwarriors then use the <i>Extensible Authentication Protocol</i>
! 5: in association with an <i>MD5</i> challenge and response protocol
! 6: (<b>EAP-MD5</b>) to authenticate against the gateway <b>moon</b> and includes
! 7: a <b>Postquantum Preshared Key (PPK)</b> that's also mixed into the
! 8: derived key material. The PPK_ID used by <b>dave</b> is unknown to <b>moon</b>
! 9: but since both peers don't enforce the use of a PPK they fall back to regular
! 10: authentication by use of the authentication data provided in the NO_PPK_AUTH
! 11: notify.
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>