Logo ID | 02-CS-000643 |
---|---|
Approved Date | 2013/01/07 |
Application ID | US-2-S-20121206-000155 |
Applied Date | 2012/12/07 |
Usage Agreement | Agreed |
OEM Licensor's Logo ID | - |
Note | - |
Target Information | ||
---|---|---|
Test Category | IPsec | |
Vendor Name | Cisco Systems | |
Country | US | |
Product Name (original) | ASR1000 | |
Product Version (original) | 15.2(1)S2 | |
Product Description (original) | ASR1000 series routers supporting IPSec V3 and IKE v2 | |
Product Name | ASR1000 | |
Product Version | 15.2(1)S2 | |
Product Classification | SGW | |
Product Description | ASR1000 series routers supporting IPSec V3 and IKE v2 | |
Vendor's Note | - | |
Test Information | Test Specification | 1.10.0 |
Interoperability Test Scneario | 1.10.0 | |
Information for Series of Product |
|
|
IPv6 Core Protocols Logo ID | 02-C-000643 |
Interoperable Devices |
Tunnel | SGW | |
---|---|---|---|
1 | Vendor Name | Strongswan | |
Device Name | Strongswan | ||
Version | U4.5.0/K2.6.38-8-generic | ||
2 | Vendor Name | FreeBSD | |
Device Name | FreeBSD | ||
Version | 8.2 | ||
Target supporting Advanced Functions |
Mode | o Tunnel | |
ESP Algorithms |
- AES256/SHA512
- NULL/AESXCBC - AESCCM - CHACHA |
||
IKEv2 Algorithms: | IKE SA INIT |
- CHACHA
- AESGCM - AESCCM - SHA512 - AESXCBC - DH19 |
|
IKE AUTH: |
- CHACHA
- AESCCM - SHA512 - AESXCBC |
||
IKEv2 Features: | Invalid KE Payload: |
- IKE SA INIT exchage with N(invalid KE payload)
- IKE SA INIT exchange cookie and invalid KE |
|
Rekeying: |
- IKE SA
- IPsec SA |
||
IPsec v3 features |
o Support of ICMP message type/code
o Method b) invoke Neighbor Unreachability Detection - Dummy Packet (No Next Header) handling - TFC Padding (Transport Mode) - TFC Padding (Tunnel Mode) |