Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / b23c5bb68114c133f0f2c4cb1b54415b59df0867
commitb23c5bb68114c133f0f2c4cb1b54415b59df0867[log] [tgz]
authorZhiyi Zhang <zhiyi@cs.ucla.edu>Mon Dec 18 18:40:52 2017 +0800
committerZhiyi Zhang <zhiyi@cs.ucla.edu>Mon Dec 18 18:40:52 2017 +0800
tree94d1b3e9aa7bf8a2bc385eae25f0f484098e153f
parente4ee8227e0e28178392b717e457746a08a54c86c [diff]
ca-config uses name instead of ClientCaItem

Change-Id: Ie4e71bf167c661e13038b356c7efb95816da26d5
3 files changed
tree: 94d1b3e9aa7bf8a2bc385eae25f0f484098e153f
  1. .jenkins.d/
  2. .waf-tools/
  3. src/
  4. tests/
  5. tools/
  6. .gitignore
  7. .jenkins
  8. .travis.yml
  9. AUTHORS.md
  10. ca.conf.sample
  11. client.conf.sample
  12. COPYING.md
  13. libndn-cert.pc.in
  14. ndncert-mail.conf.sample
  15. ndncert-send-email-challenge.py
  16. README.md
  17. waf
  18. wscript
README.md

NDN Certificate Management Protocol (NDNCERT)

NDN certificate management protocol (NDNCERT) enables automatic certificate management in NDN. In Named Data Networking (NDN), every entity should have corresponding identity (namespace) and the corresponding certificate for this namespace. Moreover, entities need simple mechanisms to manage sub-identities and their certificates. NDNCERT provides flexible mechanisms to request certificate from a certificate authority(CA) and, as soon as certificate is obtained, mechanisms to issue and manage certificates in the designated namespace. Note that NDNCERT does not impose any specific trust model or trust anchors. While the primary use case of the developed protocol is to manage NDN testbed certificates, it can be used with any other set of global and local trust anchors.

This specification provides details and packet formats to request certificates, create certificates after one of the validation mechanism, and how the issued certificate is retrieved by the original requester.

See detail on our github wiki page.