ENskip Interoperability Report 02/97

Swan Logo

Introduction

Encryption software is most useful when integrated seamlessly into the operating system and when interoperable with a wide range of competing products.

To foster the interoperability of encryption software, the Secure Wide Area Network Initiative (or S/WAN) was launched by RSA Cryptosystems, Inc. With the help of S/WAN, vendors (or programmers, as in the case of ENskip) can test their software for interoperability.

Tests are not only conducted for SKIP based products, but also rival protocols like ISAKMP/Oakley.

Updated S/WAN testing results are regularly posted on the S/WAN web pages. Please check these web pages for the latest results.

ENskip interoperability

Except compression, ENskip supports the most extensive range of SKIP features and encryption algorithms. Since ENskip implements manual secrets, both Unsigned Diffie-Hellman (UDH) and X.509 certificates as well as the Certificate Discovery Protocol (CDP), tunnel and transport mode, ENskip should interoperate with all SKIP compliant products on the market today.

Please be aware that ENskip for Linux conforms to the latest SKIP draft, whereas older implementations of other products might still adhere to earlier specifications.

Current results

Up to this moment, positive results were confirmed for the following products:


ENskip Linux

ENskip Solaris

Sun SKIP for Solaris

VPNet Remote

ENskip Linux

O.K.
DES, 2DES, 3DES, RC2-40, RC2-128, RC4-40, RC4-128, IDEA, Safer-128sk, MD5, CDP, UDH, X.509

O.K.
DES, 2DES, 3DES, RC2-40, RC2-128, RC4-40, RC4-128, IDEA, Safer-128sk, MD5, CDP, UDH, X.509

O.K.
DES, 3DES, IDEA, RC2-40, RC4-40, MD5, Safer-128sk, CDP, UDH

O.K.
DES, 3DES, MD5


Robert Muchsel muchsel@acm.org 25.05.97