%% You should probably cite draft-ietf-anima-brski-ae-10 instead of this revision.
@techreport{ietf-anima-brski-ae-04,
    number =    {draft-ietf-anima-brski-ae-04},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-anima-brski-ae/04/},
    author =    {David von Oheimb and Steffen Fries and Hendrik Brockhaus},
    title =     {{BRSKI-AE: Alternative Enrollment Protocols in BRSKI}},
    pagetotal = 37,
    year =      2023,
    month =     mar,
    day =       13,
    abstract =  {This document defines an enhancement of Bootstrapping Remote Secure Key Infrastructure (BRSKI, RFC 8995) that supports alternative certificate enrollment protocols, such as CMP. This offers the following advantages. Using authenticated self-contained signed objects for certification requests and responses, their origin can be authenticated independently of message transfer. This supports end-to-end authentication (proof of origin) also over multiple hops, as well as asynchronous operation of certificate enrollment. This in turn provides architectural flexibility where to ultimately authenticate and authorize certification requests while retaining full-strength integrity and authenticity of certification requests.},
}