Hi Stefan, The original (now deprecated) ECDSA authentication allowed this. Now, the mechanism is not just purely authentication, it requires manifest (+digest) etc. for authorisation. So the certificates are mandatory to capture those bindings.
You could have a new mechanism that is just authentication and leave the authorisation to local access control. In hindsight, we probably should have left the original ECDSA authentication like that and created a different name for the current one with manifest etc. Cameron. On 7 Jan 2016, at 8:29 am, Stefan Thom <[email protected]<mailto:[email protected]>> wrote: Is it possible to use bare ECC key pairs with AUTH_SUITE_ECDHE_ECDSA without the use of certificates? I’m looking at SampleClientECDHE.cc<http://sampleclientecdhe.cc/> and SampleServiceECDHE.cc<http://sampleserviceecdhe.cc/> in alljoyn\alljoyn_core\samples\secure\ and am wondering if the usage of certificates is mandatory? I would like to import a trusted set of pub keys into the device and then authenticate against this key store rather than certificate chain building. If yes, how would the sample have to get changed to accomplish that? Thank you S. _______________________________________________ Allseen-core mailing list [email protected]<mailto:[email protected]> https://lists.allseenalliance.org/mailman/listinfo/allseen-core
_______________________________________________ Allseen-core mailing list [email protected] https://lists.allseenalliance.org/mailman/listinfo/allseen-core
