search

anima-wg / constrained-voucher

This is a repo for the IETF Internet Draft about constrained vouchers in CBOR
2 stars 4 forks source link

expand section on IDevID security #223

Closed mcr closed 2 years ago

mcr commented 2 years ago

this details some concerns and risks associated with disclosure of the private key, close #220

mcr commented 2 years ago

@henkbirkholz might like to comment.

EskoDijk commented 2 years ago

I updated the text based on the 802.1AR terminology: IDevID = identity (both cert and key) , IDevID certificate = public certificate part of the identity, IDevID private key = private part of the identity - the holder of this key is the identity owner. Also some editorial fixes.

petervanderstok commented 2 years ago

Great. this helps. Esko Dijk schreef op 2022-04-06 11:43:

I updated the text based on the 802.1AR terminology: IDevID = identity (both cert and key) , IDevID certificate = public certificate part of the identity, IDevID private key = private part of the identity - the holder of this key is the identity owner. Also some editorial fixes.

-- Reply to this email directly, view it on GitHub [1], or unsubscribe [2]. You are receiving this because you are subscribed to this thread.Message ID: @.***>

Links:

[1] https://github.com/anima-wg/constrained-voucher/pull/223#issuecomment-1090069583 [2] https://github.com/notifications/unsubscribe-auth/ADCZGQN2P3SBBA7PO2SBUVTVDVMENANCNFSM5STOPOIQ