IEEE Std 802.1AR:2018 pdf download.IEEE Standard for Local and Metropolitan Area Networks-Secure Device ldentity.
IEEE Std 802.1AR specifies unique per-device identifiers (DevID) and the management and cryptographic binding of a device to its identifiers, the relationship between an initially installed identity and subsequent locally significant identities, and interfaces and methods for use of DeviDs with existing and new provisioning and authentication protocols.
1.2 Purpose
This standard defines a standard identifier for IEEE 802 devices that is cryptographically bound to that device, and defines a standard mechanism to authenticate a device’s identity. This facilitates secure device provisioning.
1.3 Relationship to other standards
This standard specifies an identifier that is generally useful across IEEE 802 networks. It draws on and is informed by other standards that have been developed elsewhere for different purposes. Where possible, it attempts compatibility with the following:
a) Trusted Platform Module (TPM)
NOTE—TPM Keys for Platform Identity [B13] describes how TPM 1.2 can be used to provide DeviD functionality, superseding IEEE Sid 802.1AR-2009 Annex B.
b) Extensible Authentication Protocol-Transport Layer Security (EAP-TLS [B6])
IETF RFC 7030 [B9J (Enrollment over Secure Transport) describes a certificate management protocol for
Public Key Infrastructure (PKI) clients that need to acquire client certificates and associated Certification
Authority (CA) certificates. A client can use an IDevID, as defined by this standard, to participate in the
enrollment protocol which supports both client generated and CA generated public/private key pairs(LDevIDs).
2. Normative references
The following referenced documents are indispensable for the application of this standard (i.e., they must be understood and used, so each referenced document is cited in text and its relationship to this document is explained). For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments or corrigenda) applies.
IEEE Std 802.1, IEEE Standard for Local and metropolitan area networks—Media Access Control (MAC) Service Definition.2
ANSI X9.62-2005, Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA).
IETF RFC 2578, STD 58, Structure of Management Information for Version 2 (SMIv2), McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M., Waldbusser, S., April l999.
IETF RFC 2579, STD 58, Textual Conventions for SMIv2, McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M.. Waldbusser. S., April 1999.
IETF RFC 2580. STD 58, Conformance Statements for SMIv2, McCloghrie, K., Perkins, D., Schoenwaelder,, J., Case, J., Rose. M., Waldbusser, S., April 1999.
IETF RFC 3279, Algorithms and Identifiers fbr the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, Polk, W., Housley, R., Bassham, L., April 2002.
IETF RFC 3647, Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework, Chokhani. S., Ford, W., Sabctt, R., Merrill, C., Wu, S., November 2003.
IETF RFC 4055, Additional Algorithms and Identifiers for RSA Cryptography for use in the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, Schaad, J., Kaliski, B., Housley, R., June 2005.IEEE Std 802.1AR pdf download.