San Francisco 2014 meeting

From Libreswan
Jump to: navigation, search

The opportunistic Meetup in San Francisco, January 2014

This meetup was hosted by John Gilmore.

Antony Antony, D. Hugh Redelmeier and Paul Wouters were present and the four of them worked on the Opportunistic Encryption prototype. An unbound DNS server plugin was written and libreswan modifications were made to allow one-sided authenticated IPsec. This allows an IPsec client to authenticate an IPsec server via a DNSSEC secured IPSECKEY record.

The prototype worked, and the libreswan modifications are scheduled to be merged into libreswan-3.10