1.5 Prerequisites/Preconditions

  • Article

The behavior of the NKPU Protocol described in this specification assumes that the client and server ADM elements are all populated, as specified in sections 3.1.1 and 3.2.1. This means that the following conditions apply:

  • The client and the server share an RSA [RFC8017] public key certificate for the protocol.

  • The client and the server have the thumbprint of the certificate.

  • The server has access to the private key corresponding to the certificate.

  • The server can look up the public key certificate and the private key by using the thumbprint.

  • The client has a list of unused key protector and session key pairs.

When using DHCPv4 as the transport, the NKPU Protocol assumes that the client has obtained a valid IPv4 address via the DHCP protocol prior to a request message broadcast. When using DHCPv6 as the transport, the NKPU client needs a valid IPv6 address and can either dynamically obtain an IPv6 address over DHCP or use stateless address autoconfiguration [RFC2462].