Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
When setting up IPSec VPNs to use Digital Certificates instead of Pre-Shared Keys for authentication, I'm concerned that there doesn't seem to be the same level of unique assurance that the remote endpoint is genuine. I can parse the Subject Name, Co...
Thanks Karsten, this has confirmed my thoughts about the Pros and Cons of using PKI in this role. As with a lot of crypto, the devil is in the implementation detail - but your point about being able to renew remote certificates and keys more easily w...