[Anima] I-D Action: draft-ietf-anima-brski-ae-08.txt
internet-drafts@ietf.org Mon, 11 December 2023 10:10 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: anima@ietf.org
Delivered-To: anima@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 80F68C14F60D; Mon, 11 Dec 2023 02:10:12 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: anima@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 11.16.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: anima@ietf.org
Message-ID: <170228941251.62026.11039823474301776077@ietfa.amsl.com>
Date: Mon, 11 Dec 2023 02:10:12 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/ZVZoT8ljhzkbratgTdUREI88HlE>
Subject: [Anima] I-D Action: draft-ietf-anima-brski-ae-08.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Dec 2023 10:10:12 -0000
Internet-Draft draft-ietf-anima-brski-ae-08.txt is now available. It is a work item of the Autonomic Networking Integrated Model and Approach (ANIMA) WG of the IETF. Title: BRSKI-AE: Alternative Enrollment Protocols in BRSKI Authors: David von Oheimb Steffen Fries Hendrik Brockhaus Name: draft-ietf-anima-brski-ae-08.txt Pages: 38 Dates: 2023-12-11 Abstract: This document defines an enhancement of Bootstrapping Remote Secure Key Infrastructure (BRSKI, RFC 8995) that supports alternative certificate enrollment protocols, such as CMP. This offers the following advantages. Using authenticated self-contained signed objects for certification requests and responses, their origin can be authenticated independently of message transfer. This supports end-to-end authentication (proof of origin) also over multiple hops, as well as asynchronous operation of certificate enrollment. This in turn provides architectural flexibility where to ultimately authenticate and authorize certification requests while retaining full-strength integrity and authenticity of certification requests. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/ There is also an HTMLized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-ae-08 A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-ae-08 Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts
- [Anima] I-D Action: draft-ietf-anima-brski-ae-08.… internet-drafts