[ietf-enroll] Re: WG Review: Credential and Provisioning (enroll)
Erik Nordmark
Erik.Nordmark at sun.com
Tue Oct 21 06:48:23 EDT 2003
> When doing enrollment of a service consumer against a service provider,
> three pieces of information need to be provided or created in order to
> support authentication of the service consumer to the service provider
> (and visa versa) and to allow for additional security services to be
> provided any information exchanged.
The last part of the last sentence doesn't parse.
> 1. An identifier, within a namespace controlled by the service
> provider, for the service consumer.
> 2. Keying information to be used for identity confirmation.
> 3. A set of service consumer permissions. These permissions
> describe to the provider the services that the consumer
> wants to access, and they describe to the consumer what
> services offered by the provider will be accessable.
An interesting potential application of this work would be to provision
nodes which use Mobile-IPv6. In that case it would be useful
to pass service *parameters* like a home address, in addition to service
*permissions*.
Is parmeters for the service something that is in scope?
Erik
More information about the ietf-enroll
mailing list