%% You should probably cite draft-mglt-lurk-tls12 instead of this I-D. @techreport{mglt-lurk-tls-requirements-00, number = {draft-mglt-lurk-tls-requirements-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-mglt-lurk-tls-requirements/00/}, author = {Daniel Migault and Kevin J. Ma}, title = {{Authentication Model and Security Requirements for the TLS/DTLS Content Provider Edge Server Split Use Case}}, pagetotal = 23, year = 2016, month = jan, day = 19, abstract = {In the TLS/DTLS Content provider Edge Server Split use case, a TLS Client uses TLS/DTLS to authenticates the Content Provider while establishing a TLS/DTLS session with the Edge Server. Such authentication scheme is designated as Split Authentication in this document. In most cases, the Edge Server does not even belong to the Content Provider, but instead to a third party like, for example, a Content Delivery Network. As a result, the Content Provider and the Edge Server must be able to interact and/or share some information. Interactions and shared information constitutes a split authentication model varies with the authentication method involved in the TLS session. For each TLS/DTLS authentication method, the document provides the associated split authentication model that makes possible a split authentication. The split authentication model is associated to security requirements and an analysis to show it does not introduce any weakness compared to the standard TLS authentication model.}, }