Next: Parameters stored in credentials, Previous: Authentication using PSK, Up: Authentication methods
In GnuTLS every key exchange method is associated with a credentials type. So in order to enable to enable a specific method, the corresponding credentials type should be initialized and set using gnutls_credentials_set. A mapping is shown below.
Key exchange algorithms and the corresponding credential types:
| Key exchange | Client credentials | Server credentials
|
|---|---|---|
KX_RSA
| ||
KX_DHE_RSA
| ||
KX_DHE_DSS
| ||
KX_RSA_EXPORT
| CRD_CERTIFICATE
| CRD_CERTIFICATE
|
KX_SRP_RSA
| CRD_SRP
| CRD_SRP
|
KX_SRP_DSS
| CRD_CERTIFICATE
| |
KX_SRP
| CRD_SRP
| CRD_SRP
|
KX_ANON_DH
| CRD_ANON
| CRD_ANON
|
KX_PSK
| CRD_PSK
| CRD_PSK
|