[ietf-enroll] Re: WG Review: Credential and Provisioning (enroll)

[Erik Nordmark]

>  When doing enrollment of a service consumer against a service provider,
>  three pieces of information need to be provided or created in order to
>  support authentication of the service consumer to the service provider
>  (and visa versa) and to allow for additional security services to be
>  provided any information exchanged.

The last part of the last sentence doesn't parse.

>        1. An identifier, within a namespace controlled by the service
>                  provider, for the service consumer.
>        2. Keying information to be used for identity confirmation.
>        3. A set of service consumer permissions. These permissions
>                  describe to the provider the services that the consumer
>                  wants to access, and they describe to the consumer what
>                  services offered by the provider will be accessable.

An interesting potential application of this work would be to provision
nodes which use Mobile-IPv6.  In that case it would be useful
to pass service *parameters* like a home address, in addition to service
*permissions*.
Is parmeters for the service something that is in scope?

  Erik