FIDO IoT rendezvous server in local network
42 views
Skip to first unread message
Boris Dinkevich
May 24, 2022, 4:19:47 AM5/24/22
to FIDO Dev (fido-dev)
Hello everyone
According to the spec, the rendezvous server can be in the local network. So a manufacturer can add it to the list of servers to try, when device boots.
Being in a local network with a local domain, prevents issuing of a SSL certificate that is derived from regular CAs.
This means either the manufacturer has to embed a custom CA and generate SSL for end user, or do the rendezvous communication without SSL.
Or are we misunderstanding the spec?
Being in a local network with a local domain, prevents issuing of a SSL certificate that is derived from regular CAs.
This means either the manufacturer has to embed a custom CA and generate SSL for end user, or do the rendezvous communication without SSL.
Or are we misunderstanding the spec?
Thank you
Boris
Ackermann Yuriy
May 24, 2022, 8:37:17 AM5/24/22
to Boris Dinkevich, FIDO Dev (fido-dev)
You can do FDO over http as well. But yes, if you go for https or coaps it will require some root certificate
--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/7700217d-b239-46f1-ac97-cffead035139n%40fidoalliance.org.
Yuriy Ackermann
FIDO, Identity, Standardsskype: ackermann.yuriy
github: @herrjemand
twitter: @herrjemand
medium: @herrjemand
Reply all
Reply to author
Forward
0 new messages