Fries, Steffen <steffen.fr...@siemens.com> wrote:
>> and the bikeshed question is: What would you call this process that
involves no
>> vouchers?
> [stf] Wouldn't that be enrollment?
> RFC7030 states in section 3.6. Server Authorization
It's the "E" in EST, so yeah.
> The client MUST check EST server authorization before accepting any
> server responses or responding to HTTP authentication requests.
Yes, but in the case of BRSKI section 7.2, point 4 the client would present
the server certificate (fingerprint) to the user in some way to verification.
This is a bit more specific, so I was looking for a more specific term.
--
Michael Richardson <mcr+i...@sandelman.ca> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ Anima mailing list -- anima@ietf.org To unsubscribe send an email to anima-le...@ietf.org
