Local Area Networks (LANs) in Aircraft - FTP Directory Listing - FAA
Local Area Networks (LANs) in Aircraft - FTP Directory Listing - FAA
Local Area Networks (LANs) in Aircraft - FTP Directory Listing - FAA
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Table 1. Internet Eng<strong>in</strong>eer<strong>in</strong>g Task Force Protocol Security Features<br />
and Key Management Configuration (Cont<strong>in</strong>ued)<br />
Protocol<br />
TLS—RFC 2246<br />
Transport Layer<br />
Security<br />
Note: TLS is the<br />
standardization<br />
of Netscape’s<br />
Secure Socket<br />
Layer Protocol<br />
version 3.<br />
NTP—RFC<br />
1305<br />
Network Time<br />
Protocol<br />
Security<br />
Features<br />
Authentication,<br />
Integrity,<br />
Privacy<br />
Integrity,<br />
Limited<br />
authentication<br />
Security<br />
Algorithm Keys Key Store <strong>in</strong> L<strong>in</strong>ux<br />
Configured<br />
with an<br />
asymmetric<br />
key so that<br />
the protocol<br />
<strong>in</strong>ternally can<br />
compute<br />
secret keys<br />
for HMAC<br />
and privacy.<br />
Optional<br />
X.509v3<br />
compliant<br />
digital<br />
certificates<br />
(e.g., PKI) for<br />
client/server<br />
authentication<br />
DES sign<strong>in</strong>g<br />
of a 64-bit<br />
packet<br />
checksum<br />
Asymmetric key<br />
(e.g., RSA, DSS)<br />
or else PKI;<br />
TLS-record<br />
protocol uses<br />
symmetric keys<br />
for<br />
authentication<br />
and privacy:<br />
HMAC-MD5,<br />
HMAC-SHA1<br />
TLS-handshake<br />
protocol uses<br />
asymmetric keys<br />
(e.g.,<br />
Diffie-Hellman,<br />
RSA, Fortessa)<br />
as a basis for<br />
exchang<strong>in</strong>g<br />
symmetric keys<br />
used by the<br />
TLS-record<br />
protocol<br />
DES cipherblock<br />
cha<strong>in</strong><strong>in</strong>g<br />
The PKI Server<br />
Certificate.<br />
DES keys with<br />
associated Key Identifier<br />
stored with<strong>in</strong> the NTP<br />
application<br />
DHCP = Dynamic host configuration protocol<br />
BIND = Berkeley Internet name doma<strong>in</strong><br />
COPS = Common open policy service<br />
DNS = Doma<strong>in</strong> Name System<br />
TSIG = Secret key transaction authentication for DNS<br />
DSS = Digital Signature Standard<br />
HMAC = Hashed message authorization code<br />
DES = Data encryption standard<br />
PIM-DM = Protocol-<strong>in</strong>dependent multicast-dense mode<br />
V = Version<br />
PIM-SM = Protocol-<strong>in</strong>dependent multicast-sparse mode<br />
ISAKMP = Internet Security Association and key management protocol<br />
MBGP = Multiprotocol extensions to border Gateway Protocol Version 4<br />
LDAPv3 = Lightweight directory access protocol version 3<br />
The IETF has been def<strong>in</strong><strong>in</strong>g the protocols of the Internet protocol family for decades. The early<br />
Advanced Research Projects Agency (ARPA) net protocols (i.e., IP, TCP, user datagram<br />
protocol (UDP), and the ARPA services) were def<strong>in</strong>ed dur<strong>in</strong>g the 1970s when the Internet was a<br />
41