* READ_EXTERNAL_STORAGE: Allows importing VPN profiles and CA certificates from external storage on some Android versions * VPN profiles may be imported from filesĭetails and a changelog can be found on our wiki: * Passwords are currently stored as cleartext in the database (only if stored with a profile) * The IPsec implementation currently supports the AES-CBC, AES-GCM, ChaCha20/Poly1305 and SHA1/SHA2 algorithms * Per-app VPN allows limiting the VPN connection to specific apps, or exclude them from using it * Split-tunneling allows sending only certain traffic through the VPN and/or excluding specific traffic from it * IKEv2 fragmentation is supported if the VPN server supports it (strongSwan does so since 5.2.1) The CA or server certificates used to authenticate the server can also be imported directly into the app. * VPN server certificates are verified against the CA certificates pre-installed or installed by the user on the system. * Combined RSA/ECDSA and EAP authentication is supported by using two authentication rounds as defined in RFC 4739 * Supports username/password EAP authentication (namely EAP-MSCHAPv2, EAP-MD5 and EAP-GTC) as well as RSA/ECDSA private key/certificate authentication to authenticate users, EAP-TLS with client certificates is also supported
CISCO ANYCONNECT 4.3 RSA SECURID FULL
* Full support for changed connectivity and mobility through MOBIKE (or reauthentication) * Uses IPsec for data traffic (L2TP is not supported)
* Uses the IKEv2 key exchange protocol (IKEv1 is not supported) Devices by some manufacturers seem to lack support for this - strongSwan VPN Client won't work on these devices! * Uses the VpnService API featured by Android 4+. Official Android port of the popular strongSwan VPN solution.
0 kommentar(er)
