Technical Summary
Enrollment over Secure Transport [RFC 7030] provides a REST style
interface for doing X.509 certificate enrollment as well as other
operations to support the enrollments. This document provides a
set of procedures to run this REST API using DTLS and CoAP rather
than TLS and HTTP.
Working Group Summary
Following adoption of the document progress in the WG was
smooth. The major issues in terms of formating and structure
were worked out prior to WG adoption.
Document Quality
The document has been reviewed and is directly build on
RFC 7030. Prior to the document going into last call three
different groups of implementers got together and had a
series of virtual inter-op events. These lead to several changes
and clarifications in the document as problems were identified.
The document mirrors EST in using the tls-unique value for channel
binding, even though it is now preferred to use TLS exporters instead
of tls-unique. The intent is that CoAP-EST will gain support for TLS
exporters when it is defined for traditional EST, and that the ACE WG
is not the correct place to do that work.
Personnel
The Document Shepherd is Jim Schaad.
The responsible Area Director is Benjamin Kaduk