Hey Rifaat,
Owen and I were chatting about ACME and device certs this morning, and it
seemed like it might be useful to rekindle discussion on the topic here on
the ACME list.
I'd like to push a little more on the trust model here. Just to establish
some terminology:
- Device: Uses certificates
Hi Richard,
Just to add, ACME is really an enrollment protocol. For device onboarding, we
have those. I hadn’t really thought about ACME as one, but there are
definitely some concepts that can and should be leverage. PoP or Proof of
ownership is one that requires exploration. Also, this tie
Hi Richard,
I was not aware of the ANIMA work before the meeting in Prague, so I will
definitely look into that in details.
One use case that I have in mind is a way to make sure that a specific
device can only be used by a specific party.
If you rely on RP to request identities for the device, t
