Security Bootstrapping Solution for Resource-Constrained Devices

Document Type Expired Internet-Draft (individual)
Authors Behcet Sarikaya  , Yoshihiro Ohba  , Robert Moskowitz  , Zhen Cao  , Robert Cragie 
Last updated 2013-01-11 (latest revision 2012-07-10)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes how to initially configure the network of resource constrained nodes securely, a.k.a., security bootstrapping. Bootstrapping architecture, communication channel and bootstrap security methods are described. System level objectives for security bootstrapping are stated. Bootstrapping solution is based on EAP-TLS authentication with the use of raw public keys as certificates.


Behcet Sarikaya (
Yoshihiro Ohba (
Robert Moskowitz (
Zhen Cao (
Robert Cragie (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)