| Davide Pesavento | 8579001 | 2019-01-19 21:22:39 -0500 | [diff] [blame] | 1 | # NDN Certificate Management Protocol (NDNCERT) |
| 2 | |
| 3 | [](https://travis-ci.org/named-data/ndncert) |
| Zhiyi | c3837ff | 2016-12-13 17:00:00 -0800 | [diff] [blame] | 4 | |
| 5 | NDN certificate management protocol (NDNCERT) enables automatic certificate management in |
| 6 | NDN. In Named Data Networking (NDN), every entity should have corresponding identity |
| 7 | (namespace) and the corresponding certificate for this namespace. Moreover, entities need |
| 8 | simple mechanisms to manage sub-identities and their certificates. NDNCERT provides flexible |
| 9 | mechanisms to request certificate from a certificate authority(CA) and, as soon as certificate |
| 10 | is obtained, mechanisms to issue and manage certificates in the designated namespace. Note that |
| 11 | NDNCERT does not impose any specific trust model or trust anchors. While the primary use case |
| 12 | of the developed protocol is to manage NDN testbed certificates, it can be used with any other |
| 13 | set of global and local trust anchors. |
| 14 | |
| 15 | This specification provides details and packet formats to request certificates, create |
| 16 | certificates after one of the validation mechanism, and how the issued certificate is retrieved |
| 17 | by the original requester. |
| 18 | |
| Davide Pesavento | 8579001 | 2019-01-19 21:22:39 -0500 | [diff] [blame] | 19 | See [our GitHub wiki](https://github.com/named-data/ndncert/wiki/NDN-Certificate-Management-Protocol) |
| 20 | for more details. |