[Anima] I-D Action: draft-ietf-anima-brski-ae-10.txt
internet-drafts@ietf.org Fri, 01 March 2024 12:51 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: anima@ietf.org
Delivered-To: anima@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BF8E5C180B5C; Fri, 1 Mar 2024 04:51:36 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: anima@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.6.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: anima@ietf.org
Message-ID: <170929749676.21482.6288254666384388867@ietfa.amsl.com>
Date: Fri, 01 Mar 2024 04:51:36 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/JHy-1_XFOrg6RW_7JxeFovL6n_s>
Subject: [Anima] I-D Action: draft-ietf-anima-brski-ae-10.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Mar 2024 12:51:36 -0000
Internet-Draft draft-ietf-anima-brski-ae-10.txt is now available. It is a work
item of the Autonomic Networking Integrated Model and Approach (ANIMA) WG of
the IETF.
Title: BRSKI-AE: Alternative Enrollment Protocols in BRSKI
Authors: David von Oheimb
Steffen Fries
Hendrik Brockhaus
Name: draft-ietf-anima-brski-ae-10.txt
Pages: 41
Dates: 2024-03-01
Abstract:
This document defines an enhancement of Bootstrapping Remote Secure
Key Infrastructure (BRSKI, RFC 8995). It supports alternative
certificate enrollment protocols, such as CMP, that use authenticated
self-contained signed objects for certification messages.
This offers the following advantages. The origin of requests and
responses can be authenticated independently of message transfer.
This supports end-to-end authentication (proof of origin) also over
multiple hops, as well as asynchronous operation of certificate
enrollment. This in turn provides architectural flexibility where
and when to ultimately authenticate and authorize certification
requests while retaining full-strength integrity and authenticity of
certification requests.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-ae-10
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-ae-10
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
- [Anima] I-D Action: draft-ietf-anima-brski-ae-10.… internet-drafts