A New Internet-Draft is available from the on-line Internet-Drafts directories.
This Internet-Draft is a work item of the Autonomic Networking Integrated Model
and Approach WG of the IETF.
Title : BRSKI with Pledge in Responder Mode (BRSKI-PRM)
Authors : Steffen Fries
Thomas Werner
Eliot Lear
Michael C. Richardson
Filename : draft-ietf-anima-brski-prm-07.txt
Pages : 83
Date : 2023-02-21
Abstract:
This document defines enhancements to bootstrapping a remote secure
key infrastructure (BRSKI, RFC8995) to facilitate bootstrapping in
domains featuring no or only time limited connectivity between a
pledge and the domain registrar. It specifically targets situations
in which the interaction model changes from a pledge-initiated-mode,
as used in BRSKI, to a pledge-responding-mode as described in this
document. To support the pledge-responding mode, BRSKI-PRM
introduces a new component, the registrar-agent, which facilitates
the communication between pledge and registrar during the
bootstrapping phase. To establish the trust relation between pledge
and domain registrar, BRSKI-PRM relies on object security rather than
transport security.
The approach defined here is agnostic with respect to the underlying
enrollment protocol which connects the pledge and the domain
registrar to the Domain CA.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-anima-brski-prm/
There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-prm-07
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-prm-07
Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
_______________________________________________
Anima mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/anima
