[strongSwan] Which strongSwan plugin to securely store/retrieve the PSKs ?

Abulius, Mugur (Nokia - FR/Paris-Saclay) mugur.abulius at nokia.com
Tue Feb 13 17:55:44 CET 2018

For a strongSwan client/server configuration using PSKs for IPsec authentication I am looking for a way to securely store/retrieve the PSKs.
The client uses a HW based TPM. The server uses an in-house CryptoAgent software with similar TPM functionalities.
I have seen the "Trusted Platform Module" plug-in (https://wiki.strongswan.org/projects/strongswan/wiki/TPMPlugin) and I wander if it is the good starting point for our problem.
Doers strongSwan invokes this plug-in when it needs to store/retrieve a PSK?
Thank you

More information about the Users mailing list