[Anima] I-D Action: draft-ietf-anima-brski-ae-10.txt
internet-drafts@ietf.org Fri, 01 March 2024 12:51 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: anima@ietf.org
Delivered-To: anima@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BF8E5C180B5C; Fri, 1 Mar 2024 04:51:36 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: anima@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.6.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: anima@ietf.org
Message-ID: <170929749676.21482.6288254666384388867@ietfa.amsl.com>
Date: Fri, 01 Mar 2024 04:51:36 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/JHy-1_XFOrg6RW_7JxeFovL6n_s>
Subject: [Anima] I-D Action: draft-ietf-anima-brski-ae-10.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Mar 2024 12:51:36 -0000
Internet-Draft draft-ietf-anima-brski-ae-10.txt is now available. It is a work item of the Autonomic Networking Integrated Model and Approach (ANIMA) WG of the IETF. Title: BRSKI-AE: Alternative Enrollment Protocols in BRSKI Authors: David von Oheimb Steffen Fries Hendrik Brockhaus Name: draft-ietf-anima-brski-ae-10.txt Pages: 41 Dates: 2024-03-01 Abstract: This document defines an enhancement of Bootstrapping Remote Secure Key Infrastructure (BRSKI, RFC 8995). It supports alternative certificate enrollment protocols, such as CMP, that use authenticated self-contained signed objects for certification messages. This offers the following advantages. The origin of requests and responses can be authenticated independently of message transfer. This supports end-to-end authentication (proof of origin) also over multiple hops, as well as asynchronous operation of certificate enrollment. This in turn provides architectural flexibility where and when to ultimately authenticate and authorize certification requests while retaining full-strength integrity and authenticity of certification requests. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/ There is also an HTMLized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-ae-10 A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-ae-10 Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts
- [Anima] I-D Action: draft-ietf-anima-brski-ae-10.… internet-drafts