>> * Should probably add a note in section 6 that any proxy that terminates
    >> the
    >> DTLS connection is going to be required to act as an RA.  RAs
are required
>> to have the entire request for adding authentication as necessary.

> This is visible in the figure of section 6, but needs elaboration in the
    > text.

I don't understand why we have that paragraph.
An end point that terminates the Pledge (D)TLS connection and acts as
an RA *IS* a Join Registrar, not a Proxy.

Thus is outside the BRSKI context, and thus a proxy with RA (separate or not)

Ace mailing list

Reply via email to