Re: enrollment/mgt operations

[Stephen Farrell <stephen.farrell@xxxxxxxxxxxx>]

Hi Chris,

> Would it make sense to add
>   COMPARE  to compare the stored credential to the credential
>            on the CS or another device
> 
[...]

I must admit I find this a bit of a stretch, does anyone else 
think we should add this now? I'd be for leaving it out for now, 
but keeping it on the list for discussion once we've a framework
I-D in front of us.

> >So, questions:
> >
> >- Does all this just apply to the credential server case, or
> >  also for direct transfers?
> 
> I'd suggest both.  For any set of circumstances of which I can
> see, one device would be acting as a 'client' and the other as
> a 'server'.  This is evident in the case of a device and the CS.
> For a direct transfer, I can't think that they would be acting
> as peers or anything other than one being a 'client' and the other
> being its 'server' for the moment.  Those roles may reverse the
> next moment.  Does it make sense to mandate that the initiator
> always play the role of 'client' in all cases?

How about when there's e.g. a filesystem in between? Its probably
different in the sense that there's no request/response, just
an export (PUT?). Otherwise, I agree that any connection-oriented
direct transfer might well be able to use a very similar protocol,
at least at the level we've gotten to so far.

Stephen.

-- 
____________________________________________________________
Stephen Farrell         				   
Baltimore Technologies,   tel: (direct line) +353 1 647 7406
61 Fitzwilliam Lane,                    fax: +353 1 647 7499
Dublin 2.                mailto:stephen.farrell@xxxxxxxxxxxx
Ireland                             http://www.baltimore.com