From: Thomas Jalsovsky <admin@po...> - 2002-11-25 13:46:34
on the cisco.com I found, that Cisco ATA186 uses Cisco Proprietray
H.235 implementation, therefore it does not work with GnuGk.
Now I searched for Cisco.com again, and I found, how should that
proprietary H.235 implemented:
To validate a cryptoToken received in a RAS message, the application
1. Use the alias in the cryptoToken to look up the associated password.
2. Use the password, the timestamp, and the alias, to ASN.1 encode a
ClearToken. The ClearToken is a PwdCertToken. The application should
maintain the password and alias as NULL-terminated strings and include the
NULL when performing the ASN.1 encoding.
3. Perform an MD5 Hash on the ASN.1 encoded buffer. This results in a
4. Compare the calculated Hash with the one found in the token field of
If the hash values match, the application should issue a confirmation
message (xCF) to the gatekeeper, which is transmitted to the gateway.
Otherwise, the application should send a rejection message (xRJ) with a
reject reason of securityDenial.
Should someboud take a look for that, maybe implement?