Documentation Home
> SunScreen SKIP User's Guide, Release 1.1
SunScreen SKIP User's Guide, Release 1.1
Book Information
Preface
Chapter 1 Installing SunScreen SKIP
An Overview of SunScreen SKIP
Hardware and Software Requirements
Supported Platforms
Hardware Requirements
Operating System Requirements
Protocol Compatibility
Installation Procedure
Installing the Software for the First Time
Upgrading From Earlier Versions of SKIP for Solaris
Removing the Earlier Versions of the Software
Installing the Software
Installing SKIP Unsigned Diffie-Hellman (UDH) Certificates
Installing Your Network Interface
Rebooting Your System
Passphrase Protection
Activating Your Passphrase
Changing Your Passphrase
Removing Your Passphrase
Chapter 2 Installing Keys and Certificates
Keys and Certificates
Keys
Certificates
Key and Certificate Management
Adding Certificates or Local Identities with install_skip_keys
Chapter 3 Managing SunScreen SKIP Through skiptool
Using the Graphical User Interface (skiptool)
Configuring SunScreen SKIP
Starting skiptool
The skiptool Main Window
File Menu
Access Control Buttons
Authorized Systems/Excluded Systems Lists
Management Buttons
Adding Authorized Systems
Adding a Host or Network with No Encryption
Setting Up Security for a Host, Network, or Nomadic System
Explanations of the Dialog Box Parameters
Adding Authorized Systems with Encryption
Default System Entry
Communicating In the Clear (Off)
Communicating Using SKIP Version 1
Communicating Using SKIP
Communicating Using ESP/AH
Adding Excluded Systems
Behavior for Authorized Systems
Enabling SKIP
Understanding the Symbols in the Authorized Systems List
Iconify SunScreen SKIP
Verifying the SKIP Installation and Set Up
Viewing SunScreen SKIP Statistics
The Statistics Window
SKIP Statistics
SKIP Interface StatisticsSelecting File --> SKIP Statistics --> Network Interface Stats displays the SKIP Interface Statistics window ().
SKIP Header Statistics
SKIP Key Statistics
SKIP (Version 1) Algorithm Statistics
SKIP Algorithm Statistics
SKIP Authentication Statistics
Key Management with skiptool
Chapter 4 Managing SunScreen SKIP through the Command-Line Interface
SKIP Command-Line Interface
Using the Command-Line Interface
print_cert: Printing a Certificate to Standard Output
certreq: Retrieving a Certificate From a Key Server
install_skip_keys: Installing Keys and Certificates From a Certificate Authority
skipca: Setting Up Trusted CAs
skipdb: Managing Keys and Certificates
skipd_restart: Activating the Changes
skiphost: Setting Up the ACL
skipif: Managing Network Interfaces
skiplocal: Managing Local Identities
skiplog: Viewing Security Events
skipstat: Viewing SunScreen SKIP Statistics
SKIP Network Interface Statistics
SKIP Header Statistics:
Key Statistics
SKIP Encryption Statistics:
Chapter 5 Usage Examples
Setting Up an Encrypted Connection Between Two or More Hosts
Setting Up an Encrypted Connection Between a Host and a SunScreen SPF-100
Setting Up an Encrypted Connection From a Host to an Encrypting Gateway, or SunScreen EFS
Setting Up a Nomadic Encrypting Gateway
Using Tunnel Addresses
Appendix A Quick-Start Guide
Installing SKIP Binaries
Is It Working?
Examining the Local SKIP Configuration
Appendix B SunScreen SKIP Theory of Operations
An Overview of SunScreen SKIP
SKIP Is Unique
The Engineering Data About SKIP
How SKIP Has Evolved
SunScreen SKIP Security Services
Relating SKIP to Data Encryption Concepts
SunScreen SKIP Services
Access Control List (ACL) Using SunScreen SKIP
Transport and Tunnel Modes
Topology Hiding
Public-Key Cryptography and Diffie-Hellman Certificates
Public-Private Keys
Certificates
Certification Authority
Unsigned Diffie-Hellman (UDH) Keys
The Namespace Identifiers (NSID)
Traffic Encryption
Authentication of SKIP Packets
Key and Certificate Management with SKIP
Certificate Discovery Protocol (CDP)
What Are the Operation Requirements of CDP?
How Do You Configure CDP?
How Long Are Certificates Cached?
The SKIP Encryption Algorithm
Zero-Message Master-Key Update
Summary
Glossary
© 2010, Oracle Corporation and/or its affiliates