From 86b877a2f5e2f415a3e76b9ec1a272261cf4996c Mon Sep 17 00:00:00 2001 From: ID Bot Date: Thu, 1 Feb 2024 11:40:56 +0000 Subject: [PATCH] Script updating gh-pages from 0fb725a. [ci skip] --- draft-vesco-vcauthtls.html | 23 ++++++++++++++++------- draft-vesco-vcauthtls.txt | 26 +++++++++++++++++++------- 2 files changed, 35 insertions(+), 14 deletions(-) diff --git a/draft-vesco-vcauthtls.html b/draft-vesco-vcauthtls.html index 79d1d88..5eceb00 100644 --- a/draft-vesco-vcauthtls.html +++ b/draft-vesco-vcauthtls.html @@ -1029,11 +1029,11 @@ Internet-Draft TODO - Abbreviation -January 2024 +February 2024 Vesco & Perugini -Expires 2 August 2024 +Expires 4 August 2024 [Page] @@ -1046,12 +1046,12 @@
draft-vesco-vcauthtls-latest
Published:
- +
Intended Status:
Standards Track
Expires:
-
+
Authors:
@@ -1104,7 +1104,7 @@

time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."

- This Internet-Draft will expire on 2 August 2024.

+ This Internet-Draft will expire on 4 August 2024.

@@ -1682,6 +1683,14 @@

Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, DOI 10.17487/RFC2119, , <https://www.rfc-editor.org/rfc/rfc2119>.
+
[RFC5996]
+
+Kaufman, C., Hoffman, P., Nir, Y., and P. Eronen, "Internet Key Exchange Protocol Version 2 (IKEv2)", RFC 5996, DOI 10.17487/RFC5996, , <https://www.rfc-editor.org/rfc/rfc5996>.
+
+
[RFC6071]
+
+Frankel, S. and S. Krishnan, "IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap", RFC 6071, DOI 10.17487/RFC6071, , <https://www.rfc-editor.org/rfc/rfc6071>.
+
[RFC7250]
Wouters, P., Ed., Tschofenig, H., Ed., Gilmore, J., Weiler, S., and T. Kivinen, "Using Raw Public Keys in Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)", RFC 7250, DOI 10.17487/RFC7250, , <https://www.rfc-editor.org/rfc/rfc7250>.
@@ -1728,7 +1737,7 @@

Acknowledgments

-

We would like to thank Nicola Tuveri for his very helpful suggestions in the preparation of the first version of this document.

+

We would like to thank Nicola Tuveri for his very helpful suggestions during the preparation of the first version of this technical specification.

diff --git a/draft-vesco-vcauthtls.txt b/draft-vesco-vcauthtls.txt index 02bbcbb..20552fe 100644 --- a/draft-vesco-vcauthtls.txt +++ b/draft-vesco-vcauthtls.txt @@ -5,7 +5,7 @@ WG A. Vesco Internet-Draft L. Perugini Intended status: Standards Track LINKS Foundation -Expires: 2 August 2024 30 January 2024 +Expires: 4 August 2024 1 February 2024 Transport Layer Security (TLS) Authentication with Verifiable Credential @@ -53,7 +53,7 @@ Status of This Memo time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." - This Internet-Draft will expire on 2 August 2024. + This Internet-Draft will expire on 4 August 2024. Copyright Notice @@ -612,10 +612,11 @@ Figure 1: Generation of the identity compliant with the SSI model and on the received data. The DLT node MUST be authenticated through an X.509 certificate. The session resumption and 0 round-trip time (0-RTT) features of TLS 1.3 can be used to reduce the overhead of - establishing this TLS channel. In addition, since confidentiality is - not a requirement for DID resolution, another solution is to - configure the DLT node to sign the replies such that the DID resolver - can verify the origin and the integrity of the data received. + establishing this TLS channel. In addition, the communication with + the DLT node can be protected with Internet Protocol Security (IPsec) + [RFC6071] and Internet Key Exchange (IKE) [RFC5996] in endpoint-to- + endpoint transport mode for even better performance in term of + latency of DID resolution. 8. IANA Considerations @@ -630,6 +631,16 @@ Figure 1: Generation of the identity compliant with the SSI model and DOI 10.17487/RFC2119, March 1997, . + [RFC5996] Kaufman, C., Hoffman, P., Nir, Y., and P. Eronen, + "Internet Key Exchange Protocol Version 2 (IKEv2)", + RFC 5996, DOI 10.17487/RFC5996, September 2010, + . + + [RFC6071] Frankel, S. and S. Krishnan, "IP Security (IPsec) and + Internet Key Exchange (IKE) Document Roadmap", RFC 6071, + DOI 10.17487/RFC6071, February 2011, + . + [RFC7250] Wouters, P., Ed., Tschofenig, H., Ed., Gilmore, J., Weiler, S., and T. Kivinen, "Using Raw Public Keys in Transport Layer Security (TLS) and Datagram Transport @@ -662,7 +673,8 @@ Figure 1: Generation of the identity compliant with the SSI model and Acknowledgments We would like to thank Nicola Tuveri for his very helpful suggestions - in the preparation of the first version of this document. + during the preparation of the first version of this technical + specification. Authors' Addresses