Hi all

I m trying to apply IPsec features in a WindowsXP machine. This machine has established a TCP/IP communication with a Unix server. I want to use asymmetric (public key) cryptography, which in general requires a public key for the signature and the encryption and a private key for the decryption of a tcp packet.

Does anyone know how a certificate and a respective public key is generated? I know the PGP program which is not free.
What cofigurations are necessary in order all the outgoing packets (with destination the Unix server) to be signed and encrypted with the use of a public key?

Thank you for your time
Nektarios

It really depends on your environment when it comes to deciding which method to use.

To use certificates, you need access to a Certificate Authority (CA) or similar.

Beyond that, it could go in several directions. Check out the links below, and then come back if you still have more specific questions:

http://www.openssl.org/
http://www.onlamp.com/pub/a/bsd/2002/04/04/ipsec.html
http://tldp.org/HOWTO/SSL-Certificates-HOWTO/x341.html
http://www.securityfocus.com/infocus/1519
http://www.securityfocus.com/infocus/1526
http://www.securityfocus.com/infocus/1528

Just use Putty on a Windows Machine to create the SSH connection to a Unix box.

Thnk you for your reply.

I check the URL's you supposed.

I also found the SSH Sentinel program and as I read from its manual it may be helpful since it allows the creation of certificates, as well as to import or export certificates as files.

Nektarios

Well I don't know what was used to create it, but I just added the certificate here, and then could connect to the linux box.