2.2.3 Device Registration
Mobile devices such as smart phones and tablets have become a platform that people use to perform some or much of their day-to-day work. In order to take on this role, these devices often need to be registered and connected to workplace networks and resources. The device registration protocols provide a way for devices to discover registration services and then to use these services to register personal or corporate-owned devices with a workplace.
DVRD (Device Registration Discovery Protocol)
The Device Registration Discovery Protocol [MS-DVRD] defines a mechanism for the discovery of information needed to register devices using the Device Registration Enrollment Protocol [MS-DVRE].
DVRE (Device Registration Enrollment Protocol)
The Device Registration Enrollment Protocol [MS-DVRE] defines a lightweight mechanism for registering personal or corporate-owned devices with a workplace. It provides for issuance of X.509v3 digital certificates, and is intended for use as a device registration server. The server is known in WS-Trust terminology as an STS.
DVRJ (Device Registration Join Protocol)
The Device Registration Join Protocol [MS-DVRJ] defines a lightweight mechanism for registering personal or corporate-owned devices with a workplace. It provides for issuance of X.509v3 digital certificates, and is intended for use as a device registration server. It provides a single REST-based endpoint that returns JavaScript Object Notation (JSON)–formatted data in the response message. Note that DVRJ is preferred over DVRE for device registration.
KPP (Key Provisioning Protocol)
The Key Provisioning Protocol [MS-KPP] defines a mechanism for a client to register a set of cryptographic keys on a user and device pair. It provides a single REST-based endpoint that returns JSON–formatted data in the response message.