Authenticating TCP connections based on public keys

Janusz A. Urbanowicz alex at bofh.net.pl
Wed Sep 29 12:36:04 CEST 2004


On Mon, Sep 27, 2004 at 02:12:55PM -0700, Christian Stork wrote:
> Hi,
> 
> I have a potentially naive question so please forgive me if I missed an
> obvious answer or if this is not the appropriate list (at least I know
> it's not an FAQ): 
> 
> Assume I'm running a service for certain peers.  My server knows the
> public keys of each peer.  How can I use GPG (or any of its subprojects)
> to authenticate an incoming connection based on these public keys?  Is
> there a standard for this case?
> 
> (I'm interested in keeping the administrative overhead as low as
> possible, which is why extra SSL certificates etc. are out of question.)

You have to do key distribution in some way anyway (unless you want to use
already distributed keys) so why don't use certs? SSL is the thing you want
anyway. Or possibly SSH port tunneling. Or IPSec. SSL/TLS is still the main
answer for question you asked.

Alex
-- 
0x46399138



More information about the Gnupg-devel mailing list