Toerless,
I didn't find your admission control "policeman" in the ACP draft.
I did find this:
> Policies if candidate ACP nodes should receive a domain
> certificate or not, for example based on the devices LDevID as in
> BRSKI. The ACP registrar may have a whitelist or blacklist of
> devices serialNumbers from teir LDevID.
To me that's all we really need to say in the ACP protocol spec, and we
could say the same thing in BRSKI, but we may need to say more about
how this might work in a future draft.
Brian
_______________________________________________
Anima mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/anima
