mobopts-1----Page:14
1 2 3 4 5 6 7 8 9 10 11 12 13 14
|
Tentative Proposal Rely on router certificates whenever possible Example: CARD, SEND Manufacturing and configuring MNs is easy Worked well for the web Applicable when no trust for the MN is needed Use “application specific” security for MN if really needed Example: draft-kempf-handover-key-00.txt May not need any configuration! Separate certs/ownership vs. use of this Better separation than assuming a kmgmt protocol that provides a shared secret |