4.1 Establishing a Connection Using GMC Authentication
Node 2 requests to connect to a Group created by Node 1. Node 1 is already listening for incoming connections. Node 2 already has a GMC.
Figure 3: Establishing a connection using GMC authentication
To establish the connection, the following steps occur:
Node 2 (the Requestor) queries PNRP for a Group Node. For example, if the Group Peer Name is "abc123", Node 2 queries for "abc123.participant".
PNRP responds with the address and port of Node 1 (the Authenticator).
Node 2 establishes a P2P Graphing connection to Node 1. Because P2P Graphing has been configured to use P2P Grouping as the Graph Security Provider, P2P Grouping is asked to authenticate the connection.
Node 2 and Node 1 establish a secure connection using TLS.
Node 2 sends a message containing the Hello message and the MyGMC message. The MyGMC message contains Node 2's GMC chain.
Node 1 validates that the GMC received is valid, and replies with a message containing the Hello message and the MyGMC message.
The connection is now authenticated, and the P2P Graphing protocol begins using the connection.