Feature #5112
Include certificate name in KeyLocator
Status:
New
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
3.00 h
Tags:
Description
Currently, KeyLocator in Interest/Data signature carries the key name only.
When there are multiple certificates issued to the same key, including when the certificate has been renewed on the same key, the validator may be retrieving an unexpected certificate.
This issue is to put the certificate name into KeyLocator during signing, so that the validator can retrieve the certificate without additional configuration.
Related issues
Updated by Junxiao Shi 9 months ago
Cross-project links:
https://github.com/zjkmxy/python-ndn/issues/13
https://github.com/named-data-iot/ndn-lite/issues/72
NDNts will get this feature as well.
Updated by Junxiao Shi 9 months ago
- Related to Feature #5114: Accommodate certificate name in KeyLocator in /localhop/nfd/rib validation rules added
Updated by Junxiao Shi 9 months ago
- Blocks Feature #5113: Override certificate name parts in KeyLocator added
Updated by Junxiao Shi about 1 month ago
- Related to Feature #5142: ValidatorConfig: Accommodate certificate name in hierarchical checker added