No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

NE20E-S V800R010C10SPC500 Feature Description - MPLS 01

This is NE20E-S V800R010C10SPC500 Feature Description - MPLS
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
LDP Authentication

LDP Authentication

Message-digest algorithm 5 (MD5) is a standard digest algorithm defined in relevant standards. A typical application of MD5 is to calculate a message digest to prevent message spoofing. The MD5 message digest is a unique result calculated by an irreversible character string conversion. If a message is modified during transmission, a different digest is generated. After the message arrives at the receive end, the receive end can determine whether the packet is modified by comparing the received digest with the pre-computed digest.

LDP MD5 authentication prevents LDP packets from being modified by generating a unique digest for an information segment. This authentication mode is stricter than common checksum verification for TCP connections.

Before an LDP message is sent over a TCP connection, LDP MD5 authentication is performed by padding the TCP header with a unique digest. This digest is a result calculated by MD5 based on the TCP header, LDP message, and password set by the user.

When receiving this TCP packet, the receiver obtains the TCP header, digest, and LDP message, and then uses MD5 to calculate a digest based on the received TCP header, received LDP message, and locally stored password. The receiver compares the calculated digest with the received one to check whether the packet is modified.

A password can be set in either ciphertext or simple text. The simple password is directly recorded in the configuration file. The ciphertext password is recorded in the configuration file after being encrypted using a special algorithm.

During the calculation of a digest, the manually entered character string is used regardless of whether the password is in simple text or ciphertext. This means that a password in ciphertext does not participate in MD5 calculation.

Translation
Download
Updated: 2019-01-03

Document ID: EDOC1100055123

Views: 5829

Downloads: 21

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next