[strongSwan] Which strongSwan plugin to securely store/retrieve the PSKs ?
Abulius, Mugur (Nokia - FR/Paris-Saclay)
mugur.abulius at nokia.com
Tue Feb 13 17:55:44 CET 2018
For a strongSwan client/server configuration using PSKs for IPsec authentication I am looking for a way to securely store/retrieve the PSKs.
The client uses a HW based TPM. The server uses an in-house CryptoAgent software with similar TPM functionalities.
I have seen the "Trusted Platform Module" plug-in (https://wiki.strongswan.org/projects/strongswan/wiki/TPMPlugin) and I wander if it is the good starting point for our problem.
Doers strongSwan invokes this plug-in when it needs to store/retrieve a PSK?
More information about the Users