| commit | 06d6ae9eae542d067b245c80eac54b955fe083f1 | [log] [tgz] |
|---|---|---|
| author | Zhiyi Zhang <zhiyi@cs.ucla.edu> | Wed Mar 08 14:59:45 2017 -0800 |
| committer | Zhiyi Zhang <zhiyi@cs.ucla.edu> | Thu Mar 09 14:47:56 2017 -0800 |
| tree | 670cdfc4139e9d8af9a7abd0da2fccb0a5b6a4b7 | |
| parent | 3b76f2cfacfd5cadf85b982d8c5d3922781ffa1d [diff] |
Update CaConfig to support multi CA and make config JSON style Change-Id: I1737fa26356c255f3eb8090a5463614d7f728644
NDN certificate management protocol (NDNCERT) enables automatic certificate management in NDN. In Named Data Networking (NDN), every entity should have corresponding identity (namespace) and the corresponding certificate for this namespace. Moreover, entities need simple mechanisms to manage sub-identities and their certificates. NDNCERT provides flexible mechanisms to request certificate from a certificate authority(CA) and, as soon as certificate is obtained, mechanisms to issue and manage certificates in the designated namespace. Note that NDNCERT does not impose any specific trust model or trust anchors. While the primary use case of the developed protocol is to manage NDN testbed certificates, it can be used with any other set of global and local trust anchors.
This specification provides details and packet formats to request certificates, create certificates after one of the validation mechanism, and how the issued certificate is retrieved by the original requester.