| No. | Title |
Result | Log | Script | Packet | Dump
(bin) |
| Initialize |
|
|
|
|
|
| 1 | Initialization | PASS | X | X | X | Link0 |
| Initiator Test |
|
|
|
|
|
| 1 Phase I |
|
|
|
|
|
| 1.1 main mode |
|
|
|
|
|
| 1.1.1 pre-shared key |
|
|
|
|
|
| 1.1.1.1 Sending the first message |
|
|
|
|
|
| 1.1.1.1.1 ISAKMP Header |
|
|
|
|
|
| 2 | ISAKMP Header Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.2 Security Association Payload |
|
|
|
|
|
| 3 | SA Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.3 Proposal Payload |
|
|
|
|
|
| 4 | Proposal Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.4 Transform Payload |
|
|
|
|
|
| 1.1.1.1.4.1 Transform Payload Format check |
|
|
|
|
|
| 5 | Transform Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 6 | Transform Payload Format(Multiple Transform Payload) *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.1.1.4.2 Transform Payload SA Attributes check |
|
|
|
|
|
| 7 | Attributes include MD5 *** | Not yet supported | X | X | X | Link0 Link1 |
| 8 | Attributes include SHA *** | PASS | X | X | X | Link0 Link1 |
| 9 | Attributes include DES ** | Not yet supported | X | X | X | Link0 Link1 |
| 10 | Attributes include 3DES ** | PASS | X | X | X | Link0 Link1 |
| 11 | Attributes include AES | Not yet supported | X | X | X | Link0 Link1 |
| 12 | Attributes include PSK *** | PASS | X | X | X | Link0 Link1 |
| 13 | Attributes include RSA sign ** | Not yet supported | X | X | X | Link0 Link1 |
| 14 | Attributes include DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 15 | Attributes include DH2 ** | PASS | X | X | X | Link0 Link1 |
| 16 | Attributes include DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 17 | Attributes include DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.1.2 Sending the third message |
|
|
|
|
|
| 1.1.1.2.1 Key Exchange Payload |
|
|
|
|
|
| 18 | Key Exchange Payload Format + DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 19 | Key Exchange Payload Format + DH2 ** | PASS | X | X | X | Link0 Link1 |
| 20 | Key Exchange Payload Format + DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 21 | Key Exchange Payload Format + DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.1.2.2 Nonce Payload |
|
|
|
|
|
| 22 | Nonce Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3 Sending the fifth message |
|
|
|
|
|
| 1.1.1.3.1 Encryption of Payload |
|
|
|
|
|
| 23 | Encryption of ISAKMP payload *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3.2 Identification Payload |
|
|
|
|
|
| 24 | Identification Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3.3 HASH Payload |
|
|
|
|
|
| 25 | HASH Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.4 Implementation of Main Mode with pre-shared key |
|
|
|
|
|
| 26 | Implementation of Main Mode with pre-shared key *** | PASS | X | X | X | Link0 Link1 |
| 1.1.2 RSA signature |
|
|
|
|
|
| 1.1.2.1 Sending the fifth message |
|
|
|
|
|
| 1.1.2.1.1 Signature Payload |
|
|
|
|
|
| 27 | Signature Payload Format *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.2.1.2 Certificate Payload |
|
|
|
|
|
| 28 | Certificate Payload Format *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.2.1.2 Certificate Request Payload |
|
|
|
|
|
| 29 | Certificate Request Payload Format *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.2.2 Implementation of Main Mode with RSA signatures |
|
|
|
|
|
| 30 | Implementation of Main Mode with RSA signatures ** | Not yet supported | X | X | X | Link0 Link1 |
| 1.2 Payload Processing |
|
|
|
|
|
| 1.2.1 General Message Processing |
|
|
|
|
|
| 31 | Processing invalid ISAKMP Payload Length * | PASS | X | X | X | Link0 Link1 |
| 1.2.2 ISKAMP Header Processing |
|
|
|
|
|
| 32 | Processing invalid Responder Cookie field * | FAIL | X | X | X | Link0 Link1 |
| 33 | Processing invalid Next Payload field * | PASS | X | X | X | Link0 Link1 |
| 34 | Processing invalid Major Version field(major 15, minor 0) * | FAIL | X | X | X | Link0 Link1 |
| 35 | Processing invalid Minor Version field(major 1, minor 15) * | FAIL | X | X | X | Link0 Link1 |
| 36 | Processing invalid Exchange Type field * | PASS | X | X | X | Link0 Link1 |
| 37 | Processing invalid Flags field * | PASS | X | X | X | Link0 Link1 |
| 38 | Processing invalid Message ID field * | PASS | X | X | X | Link0 Link1 |
| 1.2.3 Generic Payload Header Processing |
|
|
|
|
|
| 39 | Processing invalid RESERVED field * | FAIL | X | X | X | Link0 Link1 |
| 1.2.4 Security Association Payload Processing |
|
|
|
|
|
| 40 | Processing invalid Next Payload field * | FAIL | X | X | X | Link0 Link1 |
| 41 | Processing invalid DOI field * | PASS | X | X | X | Link0 Link1 |
| 42 | Processing invalid Situation field * | PASS | X | X | X | Link0 Link1 |
| 43 | Processing invalid proposal(Encryption Algorithm) * | PASS | X | X | X | Link0 Link1 |
| 44 | Processing invalid proposal(Hash Algorithm) * | PASS | X | X | X | Link0 Link1 |
| 45 | Processing invalid proposal(Authentication method) * | PASS | X | X | X | Link0 Link1 |
| 46 | Processing invalid proposal(Diffie-Hellman Group) * | PASS | X | X | X | Link0 Link1 |
| 47 | Processing invalid proposal(Life Type) * | PASS | X | X | X | Link0 Link1 |
| 1.2.5 Proposal Payload Processing |
|
|
|
|
|
| 48 | Processing invalid Protocol-ID field * | PASS | X | X | X | Link0 Link1 |
| 49 | Processing invalid SPI field * | FAIL | X | X | X | Link0 Link1 |
| 50 | Processing invalid proposal * | FAIL | X | X | X | Link0 Link1 |
| 1.2.6 Transform Payload Processing |
|
|
|
|
|
| 51 | Processing invalid Transform-ID field * | PASS | X | X | X | Link0 Link1 |
| 52 | Processing invalid Transform Payload * | PASS | X | X | X | Link0 Link1 |
| 53 | Multiple Transform Payloads check(modify proposal) * | PASS | X | X | X | Link0 Link1 |
| 1.2.7 Key Exchange Payload Processing |
|
|
|
|
|
| 54 | Processing invalid Key Exchange Data field * | FAIL | X | X | X | Link0 Link1 |
| 1.2.8 Identification Payload Processing |
|
|
|
|
|
| 55 | Processing invalid ID type field * | PASS | X | X | X | Link0 Link1 |
| 56 | Not include Identification Payload * | PASS | X | X | X | Link0 Link1 |
| 57 | Invalid Identification Payload recieve * | PASS | X | X | X | Link0 Link1 |
| 1.2.9 Hash Payload Processing |
|
|
|
|
|
| 58 | Processing invalid Hash Payload * | PASS | X | X | X | Link0 Link1 |
| 59 | Processing invalid Hash Data field * | PASS | X | X | X | Link0 Link1 |
| 1.2.10 Signature Payload Processing |
|
|
|
|
|
| 60 | Processing invalid Signature Payload * | Not yet supported | X | X | X | Link0 Link1 |
| 61 | Processing invalid Signature Data field * | Not yet supported | X | X | X | Link0 Link1 |
| 1.2.11 Certificate Request Payload Processing |
|
|
|
|
|
| 62 | Processing invalid Certificate Encoding field * | Not yet supported | X | X | X | Link0 Link1 |
| 63 | Processing invalid Certificate Authority field * | Not yet supported | X | X | X | Link0 Link1 |
| 64 | Processing invalid Certificate Type with Certificate Authority * | Not yet supported | X | X | X | Link0 Link1 |
| 1.2.12 Certificate Payload Processing |
|
|
|
|
|
| 65 | Processing invalid Certificate Encoding field * | Not yet supported | X | X | X | Link0 Link1 |
| 66 | Processing invalid Certificate Data field * | Not yet supported | X | X | X | Link0 Link1 |
| 2 Phase II |
|
|
|
|
|
| 2.1 quick mode |
|
|
|
|
|
| 2.1.1 Sending the first message |
|
|
|
|
|
| 2.1.1.1 Encryption of payload |
|
|
|
|
|
| 67 | Encryption of ISAKMP payload *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.2 Position of payload |
|
|
|
|
|
| 68 | Position of payload *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.3 ISAKMP Header |
|
|
|
|
|
| 69 | ISAKMP Header Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.4 HASH(1) Payload |
|
|
|
|
|
| 70 | HASH Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.5 Security Association Payload |
|
|
|
|
|
| 71 | SA Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.6 Proposal Payload |
|
|
|
|
|
| 72 | Proposal Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.7 Transform Payload |
|
|
|
|
|
| 2.1.1.7.1 Transform Payload Format check |
|
|
|
|
|
| 73 | Transform Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 74 | Transform Payload Format(Multiple Transform) *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.7.2 Transform Payload SA Attributes check |
|
|
|
|
|
| 75 | ESP_DES,HMAC-MD5 *** | Not yet supported | X | X | X | Link0 Link1 |
| 76 | ESP_3DES,HMAC-MD5 ** | Not yet supported | X | X | X | Link0 Link1 |
| 77 | ESP_3DES,HMAC-SHA | PASS | X | X | X | Link0 Link1 |
| 78 | ESP_3DES,AES-XCBC-MAC | Not yet supported | X | X | X | Link0 Link1 |
| 79 | ESP_AES,HMAC-SHA | Not yet supported | X | X | X | Link0 Link1 |
| 80 | ESP_NULL,HMAC-MD5 *** | Not yet supported | X | X | X | Link0 Link1 |
| 81 | ESP_NULL,HMAC-SHA *** | Not yet supported | X | X | X | Link0 Link1 |
| 82 | ESP_NULL,AES-XCBC-MAC | Not yet supported | X | X | X | Link0 Link1 |
| 83 | ESP without Authentication Algorithm(ESP_DES) *** | Not yet supported | X | X | X | Link0 Link1 |
| 84 | ESP without Authentication Algorithm(ESP_3DES) *** | Not yet supported | X | X | X | Link0 Link1 |
| 85 | ESP without Authentication Algorithm(ESP_AES) | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.8 Transform Payload w/ PFS |
|
|
|
|
|
| 2.1.1.8.1 PFS with DH |
|
|
|
|
|
| 86 | enable PFS with DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 87 | enable PFS with DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 88 | enable PFS with DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 89 | enable PFS with DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.8.2 consistent of multiple proposal |
|
|
|
|
|
| 90 | consistent of proposal(Diffie-Hellman Group(Transform Payload)) *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.9 Key Exchange Payload w/ PFS |
|
|
|
|
|
| 91 | Key Exchange Payload Format +DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 92 | Key Exchange Payload Format +DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 93 | Key Exchange Payload Format +DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 94 | Key Exchange Payload Format +DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.10 Nonce Payload |
|
|
|
|
|
| 95 | Nonce Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.11 Key Exchange Payload w/o PFS |
|
|
|
|
|
| 96 | Key Exchange Payload w/o PFS | PASS | X | X | X | Link0 Link1 |
| 2.1.1.12 Identification Payload |
|
|
|
|
|
| 97 | Identification Payload Format(Tunnel mode vs SGW) *** | PASS | X | X | X | Link0 Link1 |
| 98 | Identification Payload Format(Tunnel mode vs HOST) *** | PASS | X | X | X | Link0 Link1 |
| 2.1.2 Sending the third message |
|
|
|
|
|
| 2.1.2.1 HASH(3) Payload |
|
|
|
|
|
| 99 | HASH Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.3 Receiving the fourth message(Informational Exchange) |
|
|
|
|
|
| 100 | set Commit Bit(CONNECTED Notify Message) *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.4 Implementation of Quick Mode |
|
|
|
|
|
| 101 | ESP_3DES(Tunnel mode vs SGW) | Not yet supported | X | X | X | Link0 Link1 |
| 102 | ESP_3DES and HMAC-SHA(Tunnel mode vs SGW) *** | PASS | X | X | X | Link0 Link1 |
| 103 | ESP_3DES(Tunnel mode vs HOST) | Not yet supported | X | X | X | Link0 Link1 |
| 104 | ESP_3DES and HMAC-SHA(Tunnel mode vs HOST) *** | PASS | X | X | X | Link0 Link1 |
| 105 | ESP_3DES and HMAC-SHA with PFS *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.5 Modification of IPsec SA |
|
|
|
|
|
| 106 | Re-keying of IPsec SA | PASS | X | X | X | Link0 Link1 |
| 107 | Using new SA for outbound traffic ** | PASS | X | X | X | Link0 Link1 |
| 108 | Accept both old and new SA for incoming traffic ** | FAIL | X | X | X | Link0 Link1 |
| 2.1.6 Anti-replay |
|
|
|
|
|
| 109 | Increasing Sequence Number | PASS | X | X | X | Link0 Link1 |
| 110 | Sequence Number Verification | Not yet supported | X | X | X | Link0 Link1 |
| 2.2 Payload Processing |
|
|
|
|
|
| 2.2.1 General Message Processing |
|
|
|
|
|
| 111 | Processing invalid ISAKMP Payload Length * | PASS | X | X | X | Link0 Link1 |
| 2.2.2 ISKAMP Header Processing |
|
|
|
|
|
| 112 | Processing invalid Responder Cookie field * | PASS | X | X | X | Link0 Link1 |
| 113 | Processing invalid Next Payload field * | PASS | X | X | X | Link0 Link1 |
| 114 | Processing invalid Major Version field(major 15, minor 0)* | FAIL | X | X | X | Link0 Link1 |
| 115 | Processing invalid Minor Version field(major 1, minor 15) * | FAIL | X | X | X | Link0 Link1 |
| 116 | Processing invalid Exchange Type field * | PASS | X | X | X | Link0 Link1 |
| 117 | Processing invalid Flags field * | PASS | X | X | X | Link0 Link1 |
| 118 | Processing invalid Message ID field * | PASS | X | X | X | Link0 Link1 |
| 2.2.3 Generic Payload Header Processing |
|
|
|
|
|
| 119 | Processing invalid Next Payload field * | PASS | X | X | X | Link0 Link1 |
| 120 | Processing invalid RESERVED field * | FAIL | X | X | X | Link0 Link1 |
| 2.2.4 Hash Payload Processing |
|
|
|
|
|
| 121 | Processing invalid Hash Payload * | PASS | X | X | X | Link0 Link1 |
| 122 | Processing invalid Hash Data field * | PASS | X | X | X | Link0 Link1 |
| 2.2.5 Security Association Payload Processing |
|
|
|
|
|
| 123 | Processing invalid Next Payload field * | PASS | X | X | X | Link0 Link1 |
| 124 | Processing invalid DOI field * | PASS | X | X | X | Link0 Link1 |
| 125 | Processing invalid Situation field * | PASS | X | X | X | Link0 Link1 |
| 126 | Processing invalid proposal(ESP Authentication) * | PASS | X | X | X | Link0 Link1 |
| 127 | Processing invalid proposal(Diffie-Hellman Group) * | PASS | X | X | X | Link0 Link1 |
| 128 | Processing invalid proposal(Life Type) * | PASS | X | X | X | Link0 Link1 |
| 129 | Processing invalid proposal(Encapsulation Mode) * | PASS | X | X | X | Link0 Link1 |
| 2.2.6 Proposal Payload Processing |
|
|
|
|
|
| 130 | Processing invalid Protocol-ID field * | PASS | X | X | X | Link0 Link1 |
| 131 | Processing invalid SPI field * | FAIL | X | X | X | Link0 Link1 |
| 132 | Processing invalid proposal * | FAIL | X | X | X | Link0 Link1 |
| 2.2.7 Transform Payload Processing |
|
|
|
|
|
| 133 | Processing invalid Transform-ID field * | PASS | X | X | X | Link0 Link1 |
| 134 | Processing invalid Transform Payload * | PASS | X | X | X | Link0 Link1 |
| 135 | Multiple Transform Payloads check(modify proposal) * | PASS | X | X | X | Link0 Link1 |
| 2.2.8 Key Exchange Payload Processing |
|
|
|
|
|
| 136 | Processing invalid Key Exchange Data field * | FAIL | X | X | X | Link0 Link1 |
| 2.2.9 Identification Payload Processing |
|
|
|
|
|
| 137 | Processing invalid ID type field * | PASS | X | X | X | Link0 Link1 |
| 138 | Invalid Identification Payload * | PASS | X | X | X | Link0 Link1 |
| Responder Test |
|
|
|
|
|
| 1 Phase I |
|
|
|
|
|
| 1.1 main mode |
|
|
|
|
|
| 1.1.1 pre-shared key |
|
|
|
|
|
| 1.1.1.1 Sending the second message |
|
|
|
|
|
| 1.1.1.1.1 ISAKMP Header |
|
|
|
|
|
| 139 | ISAKMP Header Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.2 Security Association Payload |
|
|
|
|
|
| 140 | SA Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.3 Proposal Payload |
|
|
|
|
|
| 141 | Proposal Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.4 Transform Payload |
|
|
|
|
|
| 1.1.1.1.4.1 Transform Payload Format check |
|
|
|
|
|
| 142 | Transform Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.1.4.2 Transform Payload SA Attributes check |
|
|
|
|
|
| 143 | DES,MD5,PSK,DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 144 | DES,SHA,PSK,DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 145 | AES,SHA,PSK,DH2 | Not yet supported | X | X | X | Link0 |
| 146 | 3DES,MD5,PSK,DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 147 | 3DES,SHA,PSK,DH2 | PASS | X | X | X | Link0 |
| 148 | 3DES,SHA,RSA sign,DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 149 | 3DES,SHA,PSK,DH1 ** | Not yet supported | X | X | X | Link0 Link1 |
| 150 | 3DES,SHA,PSK,DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 151 | 3DES,SHA,PSK,DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.1.1.4.3 Select proposal |
|
|
|
|
|
| 152 | Multiple Transform Payloads(Select proposal) *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.2 Sending the forth message |
|
|
|
|
|
| 1.1.1.2.1 Key Exchange Payload |
|
|
|
|
|
| 153 | Key Exchange Payload Format + DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 154 | Key Exchange Payload Format + DH2 ** | PASS | X | X | X | Link0 Link1 |
| 155 | Key Exchange Payload Format + DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 156 | Key Exchange Payload Format + DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.1.2.2 Nonce Payload |
|
|
|
|
|
| 157 | Nonce Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3 Sending the sixth message |
|
|
|
|
|
| 1.1.1.3.1 Encryption of Payload |
|
|
|
|
|
| 158 | Encryption of ISAKMP payload *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3.2 Identification Payload |
|
|
|
|
|
| 159 | Identification Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.3.3 HASH Payload |
|
|
|
|
|
| 160 | HASH Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.4 Implementation of Main Mode with pre-shared key |
|
|
|
|
|
| 161 | Implementation of Main Mode with pre-shared key *** | PASS | X | X | X | Link0 Link1 |
| 1.1.1.5 Modification of ISAKMP SA |
|
|
|
|
|
| 162 | cookie field ** | PASS | X | X | X | Link0 Link1 |
| 1.1.2 RSA signature |
|
|
|
|
|
| 1.1.2.1 Sending the fourth message |
|
|
|
|
|
| 1.1.2.1.1 Certificate Request Payload |
|
|
|
|
|
| 163 | Certificate Request Payload Format *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.2.2 Sending the sixth message |
|
|
|
|
|
| 1.1.2.2.1 Signature Payload |
|
|
|
|
|
| 164 | Signature Payload Format *** | Not yet supported | X | X | X | Link0 Link1 |
| 1.1.2.2.2 Cartificate Payload |
|
|
|
|
|
| 165 | Certificate Payload Format *** | Not yet supported | X | X | X | Link0 |
| 1.1.2.3 Implementation of Main Mode with RSA signatures |
|
|
|
|
|
| 166 | Implementation of Main Mode with RSA signatures ** | Not yet supported | X | X | X | Link0 Link1 |
| 1.2 Payload Processing |
|
|
|
|
|
| 1.2.1 General Message Processing |
|
|
|
|
|
| 167 | Processing invalid ISAKMP Payload Length * | PASS | X | X | X | Link0 Link1 |
| 1.2.2 ISKAMP Header Processing |
|
|
|
|
|
| 168 | Processing invalid Initiator Cookie field * | PASS | X | X | X | Link0 Link1 |
| 169 | Processing invalid Next Payload field * | PASS | X | X | X | Link0 Link1 |
| 170 | Processing invalid Major Version field(major 15, minor 0) * | PASS | X | X | X | Link0 Link1 |
| 171 | Processing invalid Minor Version field(major 1, minor 15) * | PASS | X | X | X | Link0 Link1 |
| 172 | Processing invalid Exchange Type field * | PASS | X | X | X | Link0 Link1 |
| 173 | Processing invalid Flags field * | PASS | X | X | X | Link0 Link1 |
| 174 | Processing invalid Message ID field * | PASS | X | X | X | Link0 Link1 |
| 1..3 Generic Payload Header Processing |
|
|
|
|
|
| 175 | Processing invalid RESERVED field * | FAIL | X | X | X | Link0 Link1 |
| 1.2.4 Security Association Payload Processing |
|
|
|
|
|
| 176 | Processing invalid Next Payload field * | FAIL | X | X | X | Link0 Link1 |
| 177 | Processing invalid DOI field * | PASS | X | X | X | Link0 Link1 |
| 178 | Processing invalid Situation field * | PASS | X | X | X | Link0 Link1 |
| 179 | Processing invalid proposal(Encryption Algorithm) * | PASS | X | X | X | Link0 Link1 |
| 180 | Processing invalid proposal(Hash Algorithm) * | PASS | X | X | X | Link0 Link1 |
| 181 | Processing invalid proposal(Authentication method) * | PASS | X | X | X | Link0 Link1 |
| 182 | Processing invalid proposal(Diffie-Hellman Group) * | PASS | X | X | X | Link0 Link1 |
| 183 | Processing invalid proposal(Life Type) * | PASS | X | X | X | Link0 Link1 |
| 184 | IPSEC Situation Definition(SIT_SECRECY) * | PASS | X | X | X | Link0 Link1 |
| 185 | IPSEC Situation Definition(SIT_INTEGRITY) * | PASS | X | X | X | Link0 Link1 |
| 1.2.5 Proposal Payload Processing |
|
|
|
|
|
| 186 | Processing invalid Protocol-ID field * | PASS | X | X | X | Link0 Link1 |
| 187 | Processing invalid SPI field * | PASS | X | X | X | Link0 Link1 |
| 188 | Processing invalid proposal * | FAIL | X | X | X | Link0 Link1 |
| 1.2.6 Transform Payload Processing |
|
|
|
|
|
| 189 | Processing invalid Transform-ID field * | PASS | X | X | X | Link0 Link1 |
| 190 | Processing invalid Transform Payload * | PASS | X | X | X | Link0 Link1 |
| 191 | Multiple Transform Payloads check(reject proposal) * | PASS | X | X | X | Link0 Link1 |
| 1.2.7 Key Exchange Payload Processing |
|
|
|
|
|
| 192 | Processing invalid Key Exchange Data field * | PASS | X | X | X | Link0 Link1 |
| 1.2.8 Identification Payload Processing |
|
|
|
|
|
| 193 | Processing invalid ID type field * | PASS | X | X | X | Link0 Link1 |
| 194 | Not include Identification Payload * | PASS | X | X | X | Link0 Link1 |
| 195 | invalid Identification Payload recieve * | PASS | X | X | X | Link0 Link1 |
| 1.2.9 Hash Payload Processing |
|
|
|
|
|
| 196 | Processing invalid Hash Payload * | PASS | X | X | X | Link0 Link1 |
| 197 | Processing invalid Hash Data field * | PASS | X | X | X | Link0 Link1 |
| 1.2.10 Signature Payload Processing |
|
|
|
|
|
| 198 | Processing invalid Signature Payload * | Not yet supported | X | X | X | Link0 Link1 |
| 199 | Processing invalid Signature Data field * | Not yet supported | X | X | X | Link0 Link1 |
| 1.2.11 Certificate Request Payload Processing |
|
|
|
|
|
| 200 | Processing invalid Certificate Encoding field * | Not yet supported | X | X | X | Link0 Link1 |
| 201 | Processing invalid Certificate Authority field * | Not yet supported | X | X | X | Link0 Link1 |
| 202 | Processing invalid Certificate Type with Certificate Authority * | Not yet supported | X | X | X | Link0 Link1 |
| 1.2.12 Certificate Payload Processing |
|
|
|
|
|
| 203 | Processing invalid Certificate Encoding field * | Not yet supported | X | X | X | Link0 Link1 |
| 204 | Processing invalid Certificate Data field * | Not yet supported | X | X | X | Link0 Link1 |
| 2 Phase II |
|
|
|
|
|
| 2.1 quick mode |
|
|
|
|
|
| 2.1.1 Sendign the second message |
|
|
|
|
|
| 2.1.1.1 Encryption of payload |
|
|
|
|
|
| 205 | Encryption of ISAKMP payload *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.2 Position of payload |
|
|
|
|
|
| 206 | Position of payload *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.3 ISAKMP Header |
|
|
|
|
|
| 207 | ISAKMP Header Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.4 HASH(2) Payload |
|
|
|
|
|
| 208 | HASH Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.5 Security Association Payload |
|
|
|
|
|
| 209 | SA Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.6 Proposal Payload |
|
|
|
|
|
| 210 | Proposal Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.7 Transform Payload |
|
|
|
|
|
| 2.1.1.7.1 Transform Payload Format check |
|
|
|
|
|
| 211 | Transform Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.7.2 Transform Payload SA Attributes check |
|
|
|
|
|
| 212 | ESP_DES,HMAC-MD5 *** | Not yet supported | X | X | X | Link0 Link1 |
| 213 | ESP_3DES,HMAC-MD5 ** | Not yet supported | X | X | X | Link0 Link1 |
| 214 | ESP_3DES,HMAC-SHA | PASS | X | X | X | Link0 Link1 |
| 215 | ESP_3DES,AES-XCBC-MAC | Not yet supported | X | X | X | Link0 Link1 |
| 216 | ESP_AES,HMAC-SHA | Not yet supported | X | X | X | Link0 Link1 |
| 217 | ESP_NULL,HMAC-MD5 *** | Not yet supported | X | X | X | Link0 Link1 |
| 218 | ESP_NULL,HMAC-SHA *** | Not yet supported | X | X | X | Link0 Link1 |
| 219 | ESP_NULL,AES-XCBC-MAC | Not yet supported | X | X | X | Link0 Link1 |
| 220 | ESP without Authentication Algorithm(ESP_DES) *** | Not yet supported | X | X | X | Link0 Link1 |
| 221 | ESP without Authentication Algorithm(ESP_3DES) *** | Not yet supported | X | X | X | Link0 Link1 |
| 222 | ESP without Authentication Algorithm(ESP_AES) | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.7.3 Select proposal |
|
|
|
|
|
| 223 | Multiple Proposal and Transform Payloads (select proposal) *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.8 Transform Payload w/ PFS |
|
|
|
|
|
| 224 | enable PFS with DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 225 | enable PFS with DH2 *** | Not yet supported | X | X | X | Link0 Link1 |
| 226 | enable PFS with DH5 | Not yet supported | X | X | X | Link0 |
| 227 | enable PFS with DH14 | Not yet supported | X | X | X | Link0 |
| 2.1.1.9 Key Exchange Payload w/ PFS |
|
|
|
|
|
| 228 | Key Exchange Payload Format + DH1 *** | Not yet supported | X | X | X | Link0 Link1 |
| 229 | Key Exchange Payload Format +DH2 ** | Not yet supported | X | X | X | Link0 Link1 |
| 230 | Key Exchange Payload Format +DH5 | Not yet supported | X | X | X | Link0 Link1 |
| 231 | Key Exchange Payload Format +DH14 | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.1.10 Nonce Payload |
|
|
|
|
|
| 232 | Nonce Payload Format *** | PASS | X | X | X | Link0 Link1 |
| 2.1.1.11 Key Exchange Payload w/o PFS |
|
|
|
|
|
| 233 | Key Exchange Payload w/o PFS | PASS | X | X | X | Link0 |
| 2.1.1.12 Identification Payload |
|
|
|
|
|
| 234 | Identification Payload Format(Tunnel mode vs SGW) *** | PASS | X | X | X | Link0 Link1 |
| 235 | Identification Payload Format(Tunnel mode vs HOST) *** | PASS | X | X | X | Link0 Link1 |
| 2.1.2 Receiving the fourth message(Informational Exchange) |
|
|
|
|
|
| 236 | set Commit Bit(CONNECTED Notify Message) *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.3 Implementation of Quick Mode |
|
|
|
|
|
| 237 | ESP_3DES(Tunnel mode vs SGW) | Not yet supported | X | X | X | Link0 Link1 |
| 238 | ESP_3DES and HMAC-SHA(Tunnel mode vs SGW) *** | PASS | X | X | X | Link0 Link1 |
| 239 | ESP_3DES(Tunnel mode vs HOST) | Not yet supported | X | X | X | Link0 Link1 |
| 240 | ESP_3DES and HMAC-SHA(Tunnel mode vs HOST) *** | PASS | X | X | X | Link0 Link1 |
| 241 | ESP_3DES and HMAC-SHA with PFS *** | Not yet supported | X | X | X | Link0 Link1 |
| 2.1.4 Modification of IPsec SA |
|
|
|
|
|
| 242 | Using new SA for outbound traffic ** | PASS | X | X | X | Link0 Link1 |
| 243 | Accept both old and new SA for incoming traffic ** | PASS | X | X | X | Link0 Link1 |
| 2.1.5 Anti-replay |
|
|
|
|
|
| 244 | Increasing Sequence Number | PASS | X | X | X | Link0 Link1 |
| 245 | Sequence Number Verification | Not yet supported | X | X | X | Link0 Link1 |
| 2.2 Payload Processing |
|
|
|
|
|
| 2.2.1 General Message Processing |
|
|
|
|
|
| 246 | Processing invalid ISAKMP Payload Length * | PASS | X | |