Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 0a89b72435bf7510aa0b2f94ff533341f1b85d3a
commit0a89b72435bf7510aa0b2f94ff533341f1b85d3a[log] [tgz]
authorZhiyi Zhang <zhiyi@cs.ucla.edu>Fri Apr 28 17:56:01 2017 -0700
committerZhiyi Zhang <zhiyi@cs.ucla.edu>Wed May 03 15:55:13 2017 -0700
treedabd381af75f09c7e95d3b1045e92419f4327cb9
parentdefa959fbadc4ab4561b8e3ab359c4bd402ae078 [diff]
Add credential based challenge using existing cert to request new cert

Change-Id: Iee18c64f55b42e73a3c1c201726d546096dcfef8
Refs: #4052
7 files changed
tree: dabd381af75f09c7e95d3b1045e92419f4327cb9
  1. .jenkins.d/
  2. .waf-tools/
  3. src/
  4. tests/
  5. tools/
  6. .gitignore
  7. .jenkins
  8. .travis.yml
  9. AUTHORS.md
  10. ca.conf.sample
  11. client.conf.sample
  12. COPYING.md
  13. libndn-cert.pc.in
  14. README.md
  15. waf
  16. wscript
README.md

NDN Certificate Management Protocol (NDNCERT)

NDN certificate management protocol (NDNCERT) enables automatic certificate management in NDN. In Named Data Networking (NDN), every entity should have corresponding identity (namespace) and the corresponding certificate for this namespace. Moreover, entities need simple mechanisms to manage sub-identities and their certificates. NDNCERT provides flexible mechanisms to request certificate from a certificate authority(CA) and, as soon as certificate is obtained, mechanisms to issue and manage certificates in the designated namespace. Note that NDNCERT does not impose any specific trust model or trust anchors. While the primary use case of the developed protocol is to manage NDN testbed certificates, it can be used with any other set of global and local trust anchors.

This specification provides details and packet formats to request certificates, create certificates after one of the validation mechanism, and how the issued certificate is retrieved by the original requester.

See detail on our github wiki page.