Skip to main content

Remote Attestation Procedures for Network Security Functions (NSFs) through the I2NSF Security Controller

Document Type Expired Internet-Draft (individual)
Authors Antonio Pastor , Diego Lopez , Adrian L. Shaw
Last updated 2019-08-15 (Latest revision 2019-02-11)
Replaces draft-pastor-i2nsf-vnsf-attestation
Stream (None)
Intended RFC status (None)
Expired & archived
plain text xml htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:


This document describes the procedures a client can follow to assess the trust on an external NSF platform and its client-defined configuration through the I2NSF Security Controller. The procedure to assess trustworthiness is based on a remote attestation of the platform and the NSFs running on it performed through a Trusted Platform Module (TPM) invoked by the Security Controller.


Antonio Pastor
Diego Lopez
Adrian L. Shaw

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)