Hi Warren,
The idea is interesting. I definitely like the idea of having a
lightweight mechanism for this - certainly customers have been asking for
"secure no touch provisioning", whatever that means. I'd like to throw out
a couple of things for discussion:
1. Vendors (speaking as one) don't
We proposed a similar approach (and called it, surprisingly, "zero-touch
provisioning") back in 2004-2005. ;-)
I don't recall if Intel patented it, but in any case it would've likely expired
by whenever this is going to be deployed.
I think the approach has merits (though I might be biased in
Warren Kumari wrote:
> So, I'd like to discuss this document:
> https://tools.ietf.org/html/draft-wkumari-opsawg-sdi-03 (I've had it
kicking
> around since 2016, but haven't had time to push it).
Sure sounds like ANIMA ACP and BRSKI to me.
> This document provides a simple
Hi all,
So, I'd like to discuss this document:
https://tools.ietf.org/html/draft-wkumari-opsawg-sdi-03 (I've had it
kicking around since 2016, but haven't had time to push it).
It is a very simple addition to the "normal" netboot process which many
devices do, which allows "secure" installing of