Bootstrap credential
A bootstrap credential, also known as a "birth" credential, is assigned to a device during manufacturing and stays with the device throughout its lifecycle. Acting like a birth certificate, this credential gives the device a unique identity to authenticate with Device Trust Manager.
A bootstrap credential allows the device to authenticate with Device Trust Manager using the following methods:
Authentication method | Description | Recommended for |
---|---|---|
Certificates | Devices requiring robust security and long-term identity management, such as industrial equipment, smart meters, and medical devices. | |
Passcodes | An alphanumeric passcode that can have usage restrictions or unlimited use. Used to authenticate and request certificates using protocols like SCEP and EST, which facilitate secure certificate enrollment and management for IoT devices. DicaWhile passcodes provide flexibility, they offer less security compared to certificate-based authentication. | Legacy devices, resource-constrained devices, or environments where provisioning individual certificates is impractical. Recommended only for lower-security environments. |