Thread: [Openh323gk-developer] Cisco ATA186 and H.235
H.323 Gatekeeper for VoIP and videconferencing
Brought to you by:
willamowius
From: Thomas J. <ad...@po...> - 2002-11-25 13:46:34
|
Hello, on the cisco.com I found, that Cisco ATA186 uses Cisco Proprietray H.235 implementation, therefore it does not work with GnuGk. Now I searched for Cisco.com again, and I found, how should that proprietary H.235 implemented: To validate a cryptoToken received in a RAS message, the application should: 1. Use the alias in the cryptoToken to look up the associated password. 2. Use the password, the timestamp, and the alias, to ASN.1 encode a ClearToken. The ClearToken is a PwdCertToken. The application should maintain the password and alias as NULL-terminated strings and include the NULL when performing the ASN.1 encoding. 3. Perform an MD5 Hash on the ASN.1 encoded buffer. This results in a 16-byte Hash. 4. Compare the calculated Hash with the one found in the token field of the cryptoEPPwdHash. If the hash values match, the application should issue a confirmation message (xCF) to the gatekeeper, which is transmitted to the gateway. Otherwise, the application should send a rejection message (xRJ) with a reject reason of securityDenial. URL: http://www.cisco.com/en/US/partner/products/sw/iosswrel/ps1835/products_programming_reference_guide_chapter09186a00800871de.html#xtocid14 Should someboud take a look for that, maybe implement? Regards, Thomas |