Documentation Home
> SunScreen SKIP User's Guide, Release 1.5.1
SunScreen SKIP User's Guide, Release 1.5.1
Book Information
Preface
Chapter 1 Installing and Configuring SunScreen SKIP
Overview of SunScreen SKIP
Hardware and Software Requirements
Supported Platforms
Hardware Requirements
Operating System Requirements
Protocol Compatibility
Installation Overview
New Users
Upgrade Users
Cryptography Upgrade Users
Upgrading From Earlier SKIP Versions
Installing SKIP Unsigned Diffie-Hellman (UDH) Certificates
Installing Your Network Interface
Rebooting Your System
Security Issues
Passphrase Protection
Upgrading Cryptography Modules
Security Concerns
Core Files and Security
Expired Certificates and Security
Chapter 2 Installing Keys and Certificates
Keys and Certificates
Keys
Certificates
Key and Certificate Management
Adding Certificates or Local Identities with install_skip_keys
Requirements
Chapter 3 Using the skiptool GUI
skiptool Overview
skiptool Requirements
The skiptool Main Window
File Menu
Access Control Buttons
Authorized Systems/Excluded Systems Lists
Management Buttons
Configuring SunScreen SKIP
Adding Authorized Systems
Setting Up Security for a Host, Network, or Nomadic System
Dialog Box Parameters
Parameter Explanations
Using Default System Entry
Communicating In the Clear (Off)
Communicating Using SKIP Version 1
Communicating Using SKIP
Excluding Systems
Enabling SKIP
Understanding the Symbols in the Authorized Systems List
Iconify SunScreen SKIP
Is SKIP Working?
Viewing SunScreen SKIP Statistics
The Statistics Window
SKIP Statistics
SKIP Interface Statistics
SKIP Header Statistics
Key Statistics
Algorithm Statistics
Authentication Statistics
Key Management with skiptool
Chapter 4 Using the Command-Line Interface
SKIP Command-Line Interface
Using the Command-Line Interface
print_cert: Printing a Certificate to Standard Output
Syntax
Options
certreq: Retrieving a Certificate From a Key Server
Syntax
Options
install_skip_keys: Installing Keys and Certificates From a Certificate Authority
Syntax
Options
skipca: Setting Up Trusted CAs
Syntax
Options
skipdb: Managing Keys and Certificates
Syntax
Options
skipd_restart: Activating the Changes
Syntax
skiphost: Setting Up the ACL
Syntax
Options
skipif: Managing Network Interfaces
Syntax
Options
skiplocal: Managing Local Identities
Syntax
Options
skiplog: Viewing Security Events
Syntax
Options
skipstat: Viewing SunScreen Statistics
Syntax
Options
SKIP Network Interface Statistics
SKIP Header Statistics:
Key Statistics
SKIP Encryption Statistics:
Chapter 5 Usage Examples
Setting Up an Encrypted Connection Between Two or More Hosts
Setting Up an Encrypted Connection Between a Host and a SunScreen SPF-100
Setting Up an Encrypted Connection From a Host to an Encrypting Gateway or SunScreen
Setting Up a Nomadic Encrypting Gateway
Using Tunnel Addresses
Appendix A Quick-Start Guide
Installing SKIP Binaries
Is It Working?
Examining the Local SKIP Configuration
Appendix B How SKIP Works
SKIP Security Services
Access Control
Encryption and Decryption
Shared Key and Public Key Encryption
Shared Key Encryption
Public Key Encryption
Diffie-Hellman Key Exchange
Perfect Forward Secrecy
Encryption Algorithms
SKIP Certificates
Certificate Discovery
Name Space Identifiers
SKIP Tunnels
Authentication
Appendix C Troubleshooting SunScreen SKIP
Emergency Start Instructions
Error Messages
Glossary
Index
A
C
D
E
F
G
H
I
K
L
M
N
O
P
R
S
T
V
© 2010, Oracle Corporation and/or its affiliates