Public Keys - Avaya G250 Administration

Table 86: Critical security parameters (continued)
Key
OSPF Secret
PPPoE CHAP/PAP Secret
SNMPv3 user authentication
password
Fixed Serial Number secret
Ephemeral Serial Number
secret
X9.31 PRNG key

Public keys

Table 87: Public keys
Key
Ephemeral DH phase-1 public
keys
Ephemeral DH phase-2 public
keys
Image download certificate
(Avaya root CA RSA public key)
License download public key
Description/Usage
Used for authentication OSPF messages with the Peer
OSPF routers. Secret exchanged hashed using MD5. One
secret defined per peer router identity.
Used for authentication to PPPoE server
SNMPv3 operator MD5 authentication password used for
authenticating to User and Read-Only User roles
The TDES key used for the first exchange of the serial
number exchange protocol between Gateway and S8300/
Blade server entity
The TDES key used for the first exchange of the serial
number exchange protocol.
This key is periodically re-negotiated between S8300/Blade
server entity and the Gateway.
Key for X9.31 PRNG
Description/Usage
Generated for VPN IKE phase-1 key
establishment
Generated for VPN IKE phase-2 PFS key renewal
Used for authentication of software download.
The Avaya Root certificate is hard-coded in the
Gateway image and is used directly for
authentication of the chain of trust of the Avaya
Signing Authority that is downloaded together
with the software.
Used for authentication of license file validity. The
license signing authority public key is hard-coded
in the Gateway image and is used directly for
authentication of the digital signature embedded
in the license file.
Issue 3 February 2007
3 of 3
597