Hi Fred, On 7/14/15 10:54 AM, Templin, Fred L wrote: > Hi Sri, > > > > Reason for the X.509 certificate is that, in some environments, an > attacker can > > spoof a DHCP Client Identifier and receive services that were intended > for the > > authentic client. With X.509 certificate, the certificate holder has to > sign its DHCP > > messages with its private key so the DHCP server can authenticate using the > > public key and therefore defeat any spoofing. >
Can you suggest an X.509 format/profile that can be represented in 254 bytes? Regards, Brian
signature.asc
Description: OpenPGP digital signature
_______________________________________________ dmm mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmm
