Carsten Bormann <[email protected]> wrote: >> I don't see how the four-corner model solves the issue that I >> highlighted. If the client does not have a key for any local AS, then >> nothing helps. The four-corner model deals with the issue of the >> client and the RS not trusting the same AS, but the different AS >> entities trust each other on the back side. >> >> Getting trust in a local AS seems to be a bootstrapping problem.
> If you only have one security domain, there is no benefit. But in
> general is it much easier to bootstrap a device once into its own
> security domain, instead of having to do the bootstrapping again and
> again for each server that device needs to access.
That was my understanding.
The four corner removes the problem of how C trusts RS to a problem of how
does C ask CAS whether it can trust RS. Which could involve significant
layers of PKI or human override (or pixie dust).
--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ Ace mailing list [email protected] https://www.ietf.org/mailman/listinfo/ace
