@techreport{ietf-suit-firmware-encryption-24,
    number =    {draft-ietf-suit-firmware-encryption-24},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-suit-firmware-encryption/24/},
    author =    {Hannes Tschofenig and Russ Housley and Brendan Moran and David Brown and Ken Takayama},
    title =     {{Encrypted Payloads in SUIT Manifests}},
    pagetotal = 54,
    year =      2025,
    month =     mar,
    day =       19,
    abstract =  {This document specifies techniques for encrypting software, firmware, machine learning models, and personalization data by utilizing the IETF SUIT manifest. Key agreement is provided by ephemeral-static (ES) Diffie-Hellman (DH) and AES Key Wrap (AES-KW). ES-DH uses public key cryptography while AES-KW uses a pre-shared key. Encryption of the plaintext is accomplished with conventional symmetric key cryptography.},
}