>> * Should probably add a note in section 6 that any proxy that
terminates
>> the
>> DTLS connection is going to be required to act as an RA. RAs
are required
>> to have the entire request for adding authentication as
necessary.
> This is visible in the figure of section 6, but needs elaboration
in the
> text.
I don't understand why we have that paragraph.
An end point that terminates the Pledge (D)TLS connection and acts as
an RA *IS* a Join Registrar, not a Proxy.
Thus is outside the BRSKI context, and thus a proxy with RA (separate or
not)
_______________________________________________
Ace mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ace
