HPE MSR1000 - New Feature: Ipsec Support for Suite B; New Feature: PKI Support for Suite B; Configuring Suite B in PKI; Command Reference

To Next Page

To Previous Page

New feature: PKI support for Suite B

Configuring Suite B in PKI

Suite B contains a set of encryption and authentication algorithms that meet high security

requirements. PKI commands were modified to support Suite B.

Command reference

Modified command: public-key ecdsa

Old syntax

public-key ecdsa name key-name

undo public-key

New syntax

public-key ecdsa name key-name [ secp192r1 | secp256r1 | secp384r1]

undo public-key

Views

PKI domain view

Change description

Before modification: The secp192r1 curve was used to generate the ECDSA key pair by default. No

other elliptic curve algorithms were available.

After modification: You can specify the elliptic curve used to generate the ECDSA key pair. The

following elliptic curve algorithms are available:

•

secp192r1: Uses the secp192r1 curve to generate the key pair. The secp192r1 curve is used

by default.

•

secp256r1: Uses the secp256r1 curve to generate the key pair.

•

secp384r1: Uses the secp384r1 curve to generate the key pair.

New feature: IPsec support for Suite B

Suite B contains a set of encryption and authentication algorithms that meet high security

requirements. IPsec provide stronger protection by supporting Suite B and IKEv2.

Related product manuals