Skip to main content

A Taxonomy of operational security considerations for manufacturer installed keys and Trust Anchors

Document Type Replaced Internet-Draft (individual)
Expired & archived
Author Michael Richardson
Last updated 2022-11-06
Replaces draft-richardson-secdispatch-idevid-considerations
Replaced by draft-irtf-t2trg-taxonomy-manufacturer-anchors
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-irtf-t2trg-taxonomy-manufacturer-anchors
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document provides a taxonomy of methods used by manufacturers of silicon and devices to secure private keys and public trust anchors. This deals with two related activities: how trust anchors and private keys are installed into devices during manufacturing, and how the related manufacturer held private keys are secured against disclosure. This document does not evaluate the different mechanisms, but rather just serves to name them in a consistent manner in order to aid in communication. RFCEDITOR: please remove this paragraph. This work is occurring in


Michael Richardson

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)