Internet-Draft draft-ietf-anima-brski-ae-09.txt is now available. It is a work
item of the Autonomic Networking Integrated Model and Approach (ANIMA) WG of
the IETF.
Title: BRSKI-AE: Alternative Enrollment Protocols in BRSKI
Authors: David von Oheimb
Steffen Fries
Hendrik Brockhaus
Name: draft-ietf-anima-brski-ae-09.txt
Pages: 40
Dates: 2023-12-19
Abstract:
This document defines an enhancement of Bootstrapping Remote Secure
Key Infrastructure (BRSKI, RFC 8995). It supports alternative
certificate enrollment protocols, such as CMP, that use authenticated
self-contained signed objects for certification messages.
This offers the following advantages. The origin of requests and
responses can be authenticated independently of message transfer.
This supports end-to-end authentication (proof of origin) also over
multiple hops, as well as asynchronous operation of certificate
enrollment. This in turn provides architectural flexibility where
and when to ultimately authenticate and authorize certification
requests while retaining full-strength integrity and authenticity of
certification requests.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-ae-09
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-ae-09
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
Anima mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/anima
