> On Aug 7, 2019, at 4:50 AM, Eliot Lear <l...@cisco.com> wrote: > > The purpose, as I see it, of the voucher, is simply to provide zero-touch > network provisioning. I was asking a slightly different question: for > purposes of network connectivity will operators want to know that only > devices they authorized are connecting (e.g., 802.1X and then like)? This is > a natural assumption in the wireless world, but less so in wired.
More specifically, the voucher enables the device to trust the network, i.e., the entity claiming to be the device's owner. Without the voucher, there is the TOFU (trust on first use), a.k.a. "resurrecting duckling" problem. Kent
_______________________________________________ Anima mailing list Anima@ietf.org https://www.ietf.org/mailman/listinfo/anima
