主权项 |
1. A method comprising:
receiving, at a constrained network entity, a certificate associated with a network entity, wherein the certificate is received for establishing a secure channel between the constrained network entity and the network entity; establishing, at the constrained network entity, a tentative secure channel with the network entity, wherein the tentative secure channel is established using, at least in part, a public key of the network entity; sending, by the constrained network entity to a core network entity, the received certificate associated with the network entity to determine the validity of the received certificate, whereby the constrained network entity uses the core network entity as a proxy to validate the certificate; performing authentication with the core network entity using, at least in part, the public key of the network entity; and receiving, at the constrained network entity from the core network entity, an indication of the validity of the certificate based on an analysis by the core network entity of the certificate, wherein prior to the received indication of validity of the certificate the validity of the certificate was unknown by the constrained network entity. |