Trust Model » History » Revision 6

« Previous | Revision 6/9 (diff) | Next »
Suravi Regmi, 11/25/2025 05:29 PM

Trust Model¶

trust anchor

Root / Site CA
Identity: /ndn/md2k
Type: Self-signed root CA
Trust Anchor: md2k-trust-anchor.ndncert

All components ultimately chain to this root.

Consumers load this file so they can trust any certificate issued under /ndn/md2k.

Identities Signed by the Root CA

The root /ndn/md2k signs:

Stream Identities Signed by the Producer

The producer identity /ndn/md2k/mguard/dd40c signs all stream identities:

These stream identities are used to sign manifests, encrypted DATA, and CK packets.

The producer must now serve the certificates for these streams

(interest filter on each stream's certificate prefix).

Producer Behavior

Producer validates:

Producer signs:

Producer serves:

Producer no longer signs manifests with its own identity;

manifests are now signed by stream identities.

Consumer Behavior

The consumer performs the most validation.

Consumer validates:

All rules validated using the consumers trust schema.

Consumer decrypts:

The consumer uses three rules:

AA public parameters and DKEY validation

/ndn/md2k/mguard/aa/* signed by AA (RSA), chaining to root.
Controller POLICYDATA replies

/ndn/md2k/mguard/controller/* signed by controller (RSA), chaining to root.
Stream and producer content

/ndn/md2k/mguard/dd40c/*

Allows:
- sha256 (digest) for encrypted DATA, CK, metadata
- rsa-sha256 for manifests, stream certs
  KeyLocator must be a prefix of the Data name.

All validations ultimately chain back to /ndn/md2k.

Files (4)

old_trust_shcema.png (58.9 KB) old_trust_shcema.png		Suravi Regmi, 11/21/2025 07:34 PM
trust_model.png (307 KB) trust_model.png		Suravi Regmi, 11/21/2025 08:27 PM
cert signing chain.png (22.9 KB) cert signing chain.png		Suravi Regmi, 11/25/2025 05:16 PM
Group 71.png (12 KB) Group 71.png		Suravi Regmi, 11/25/2025 05:17 PM