Hi Pedro, Thanks for your feedback and follow-up! Appreciated! Inline...
> -----Original Message----- > From: Anima [mailto:[email protected]] On Behalf Of Pedro Martinez- > Julia > Sent: 15 November 2016 11:30 > To: [email protected] > Subject: [Anima] Autonomic Registry > > Dear WG members, > > According to the presentation in the NMRG session, the ANIMA model relies > in a registry which seems to be centralized. I think it does not suit > autonomicity as well as a distributed registry would, so different definition > and implementation strategies can appear in the future. In order to be a > widely accepted model, which I think would be really useful, ANImA should > support different kinds of registries. Please let me know if you have plans to > consider it. Thank you. Generically, ANIMA devices get a domain certificate. Today, practically all certificate management solutions are centralised, with a central CA, and several RAs (Registration Authorities). So for now this is the working model. And a registrar is logically an RA in this model. Given that certificate interactions are infrequent, and given that this PKI model is very well developed, I think this is a reasonable starting point. We have had suggestions to look at peer to peer trust models, and I agree that philosophically this would be even better. However, such models are not widely used today. My personal opinion is that we could well support a different enrolment procedure, using a peer-to-peer trust model in the future; the ANIMA reference model is generic and modular enough. But my priority is to get the current solution, using standard PKI methods off the ground before going there. Do you have a concrete proposal? Would be interesting to discuss. Michael > > Regards, > Pedro > > -- > Pedro Martinez-Julia > Network Science and Convergence Device Technology Laboratory Network > System Research Institute National Institute of Information and > Communications Technology (NICT) 4-2-1, Nukui-Kitamachi, Koganei, Tokyo > 184-8795, Japan > Email: [email protected] > --------------------------------------------------------- > *** Entia non sunt multiplicanda praeter necessitatem *** > > _______________________________________________ > Anima mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/anima _______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
