Skip to main content

Delegated Authority for Bootstrap Voucher Artifacts

Document Type Expired Internet-Draft (anima WG)
Expired & archived
Authors Michael Richardson , Wei Pan
Last updated 2023-07-07 (Latest revision 2022-07-11)
Replaces draft-richardson-anima-voucher-delegation
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status Proposed Standard
Yang Validation 0 errors, 3 warnings
Additional resources Mailing list discussion
Stream WG state Parked WG Document
Document shepherd (None)
IESG IESG state Expired
Consensus boilerplate Yes
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes an extension of the RFC8366 Voucher Artifact in order to support delegation of signing authority. The initial voucher pins a public identity, and that public indentity can then issue additional vouchers. This chain of authorization can support permission-less resale of devices, as well as guarding against business failure of the BRSKI Manufacturer Authorized Signing Authority (MASA).


Michael Richardson
Wei Pan

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)