Hello all, I just submitted a new version of BRSKI-AE. The changes are mainly related to stating open issues related to YANG in section 5.2.
Best regards Steffen -----Original Message----- From: [email protected] <[email protected]> Sent: Donnerstag, 24. Juni 2021 18:15 To: Eliot Lear <[email protected]>; Brockhaus, Hendrik (T RDA CST SEA-DE) <[email protected]>; Fries, Steffen (T RDA CST) <[email protected]>; Werner, Thomas (T RDA CST SEA-DE) <[email protected]> Subject: New Version Notification for draft-ietf-anima-brski-async-enroll-03.txt A new version of I-D, draft-ietf-anima-brski-async-enroll-03.txt has been successfully submitted by Steffen Fries and posted to the IETF repository. Name: draft-ietf-anima-brski-async-enroll Revision: 03 Title: Support of asynchronous Enrollment in BRSKI (BRSKI-AE) Document date: 2021-06-24 Group: anima Pages: 60 URL: https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-anima-brski-async-enroll-03.txt&data=04%7C01%7Ccef9763c-149c-4881-b9c2-5fedc277663a%40ad011.siemens.com%7C3d4c14c2efc746a6047b08d9372b28ca%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C637601480776440915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=7MNuZVf0BZgvJqtXNxUoRV0jTcqvg0vEtzc0ke6kTeY%3D&reserved=0 Status: https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-anima-brski-async-enroll%2F&data=04%7C01%7Ccef9763c-149c-4881-b9c2-5fedc277663a%40ad011.siemens.com%7C3d4c14c2efc746a6047b08d9372b28ca%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C637601480776440915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=ntMrYE9zEmZd6zFnTdXRpfNCvgujW%2BhrTqZNt0kj3w0%3D&reserved=0 Htmlized: https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-anima-brski-async-enroll&data=04%7C01%7Ccef9763c-149c-4881-b9c2-5fedc277663a%40ad011.siemens.com%7C3d4c14c2efc746a6047b08d9372b28ca%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C637601480776440915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=aKjrNSCcOUInIf%2BjHsDU6G2tki2hWWzoaVj%2B5fWHjx4%3D&reserved=0 Diff: https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Frfcdiff%3Furl2%3Ddraft-ietf-anima-brski-async-enroll-03&data=04%7C01%7Ccef9763c-149c-4881-b9c2-5fedc277663a%40ad011.siemens.com%7C3d4c14c2efc746a6047b08d9372b28ca%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C637601480776440915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=0NeLNBuj4o0jDxzsmsfWS%2BSpT%2BMHl49kv6Sz0ZPy9bo%3D&reserved=0 Abstract: This document describes enhancements of bootstrapping a remote secure key infrastructure (BRSKI, [RFC8995] ) to also operate in domains featuring no or only timely limited connectivity between involved components. Further enhancements are provided to perform the BRSKI approach in environments, in which the role of the pledge changes from a client to a server . This changes the interaction model from a pledge-initiator-mode to a pledge-responder-mode. To support both use cases, BRSKI-AE relies on the exchange of authenticated self- contained objects (signature-wrapped objects) also for requesting and distributing of domain specific device certificates. The defined approach is agnostic regarding the utilized enrollment protocol allowing the application of existing and potentially new certificate management protocols. The IETF Secretariat _______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
