Skip to main content

Provisioning Initial Device Identifiers into Home Routers

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Michael Richardson
Last updated 2022-05-18 (Latest revision 2021-11-14)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes a method to provisioning an 802.1AR-style certificate into a router intended for use in the home. The proceedure results in a certificate which can be validated with a public trust anchor ("WebPKI"), using a name rather than an IP address. This method is focused on home routers, but can in some cases be used by other classes of IoT devices. (RFCEDITOR please remove: this document can be found at


Michael Richardson

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)