Devendra Vamsi issues

Results 3 issues of


                                            Devendra Vamsi

gnoi cert.proto: Need clarity on certificate validation during install and rotate

Section "Validate installed certificate" from page https://github.com/openconfig/gnoi/blob/master/docs/simplified_security_model.md#validate-installed-certificate insists that the target device needs to verify the new certificate(let's say ee-cert1) being installed with a CA cert(let's say ca-cert1) in the...

question

gnoi cert.proto: Need clarity on RevokeCertificates rpc

Let's say the target device uses certificate named "ee-cert1" to establish connection with the gNOI client. After establishment of this connection, if the gNOI client calls RevokeCertificates() rpc with certificate_id...

enhancement

Need clarity on trust_bundle structure in certz.proto

I have following questions regarding the trust_bundle mentioned in certz.proto. 1. trust_bundle is mentioned to be a single CertificateChain, instead shouldn't it be multiple CertificateChains or just a bundle of...