[Anima] I-D Action: draft-ietf-anima-brski-ae-08.txt

internet-drafts@ietf.org Mon, 11 December 2023 10:10 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: anima@ietf.org
Delivered-To: anima@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 80F68C14F60D; Mon, 11 Dec 2023 02:10:12 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: anima@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 11.16.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: anima@ietf.org
Message-ID: <170228941251.62026.11039823474301776077@ietfa.amsl.com>
Date: Mon, 11 Dec 2023 02:10:12 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/ZVZoT8ljhzkbratgTdUREI88HlE>
Subject: [Anima] I-D Action: draft-ietf-anima-brski-ae-08.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Dec 2023 10:10:12 -0000

Internet-Draft draft-ietf-anima-brski-ae-08.txt is now available. It is a work
item of the Autonomic Networking Integrated Model and Approach (ANIMA) WG of
the IETF.

   Title:   BRSKI-AE: Alternative Enrollment Protocols in BRSKI
   Authors: David von Oheimb
            Steffen Fries
            Hendrik Brockhaus
   Name:    draft-ietf-anima-brski-ae-08.txt
   Pages:   38
   Dates:   2023-12-11

Abstract:

   This document defines an enhancement of Bootstrapping Remote Secure
   Key Infrastructure (BRSKI, RFC 8995) that supports alternative
   certificate enrollment protocols, such as CMP.  This offers the
   following advantages.

   Using authenticated self-contained signed objects for certification
   requests and responses, their origin can be authenticated
   independently of message transfer.  This supports end-to-end
   authentication (proof of origin) also over multiple hops, as well as
   asynchronous operation of certificate enrollment.  This in turn
   provides architectural flexibility where to ultimately authenticate
   and authorize certification requests while retaining full-strength
   integrity and authenticity of certification requests.

The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/

There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-anima-brski-ae-08

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-anima-brski-ae-08

Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts