Re: [Acme] Call for adoption STAR (short-term automatically-renewed) certificates
"Fossati, Thomas (Nokia - GB/Cambridge, UK)" <thomas.fossati@nokia.com> Mon, 12 June 2017 21:05 UTC
Return-Path: <thomas.fossati@nokia.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0205F1292C5 for <acme@ietfa.amsl.com>; Mon, 12 Jun 2017 14:05:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.702
X-Spam-Level:
X-Spam-Status: No, score=-4.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nokia.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Syga5adaN3r2 for <acme@ietfa.amsl.com>; Mon, 12 Jun 2017 14:05:52 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0129.outbound.protection.outlook.com [104.47.0.129]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88BC512025C for <acme@ietf.org>; Mon, 12 Jun 2017 14:05:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nokia.onmicrosoft.com; s=selector1-nokia-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=+Xk+udxD4o1CBtu7F7gkkfEogN4a++ju34VpGWLukFs=; b=na2F1K4frlKp9XWsXtGlmUqJ6ZNOfCG//duf6SVkY5AV/7beqUnICGHq0nd1bpNIMoZ4ENkrXi67CU2n0zQq60VpliCPkSoH/BM1C8kzJAW91gnJ1esEOjoDPOnEnFhuW5KNkgzTdfp5HpBJOFZgQD0Xg3QeS8u7i7BHz3hgMg0=
Received: from VI1PR07MB1102.eurprd07.prod.outlook.com (10.163.168.26) by VI1PR07MB1037.eurprd07.prod.outlook.com (10.161.111.141) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1178.5; Mon, 12 Jun 2017 21:05:48 +0000
Received: from VI1PR07MB1102.eurprd07.prod.outlook.com ([fe80::9a3:9232:3cfb:3aaf]) by VI1PR07MB1102.eurprd07.prod.outlook.com ([fe80::9a3:9232:3cfb:3aaf%13]) with mapi id 15.01.1178.008; Mon, 12 Jun 2017 21:05:48 +0000
From: "Fossati, Thomas (Nokia - GB/Cambridge, UK)" <thomas.fossati@nokia.com>
To: Melinda Shore <melinda.shore@gmail.com>, "acme@ietf.org" <acme@ietf.org>
CC: "Fossati, Thomas (Nokia - GB/Cambridge, UK)" <thomas.fossati@nokia.com>
Thread-Topic: [Acme] Call for adoption STAR (short-term automatically-renewed) certificates
Thread-Index: AdLgb8DFIV0Qb+TDSFGZ+VszbaxnegAIZKMAAARBRgAAL9OKgACWJM0AAAAviYAAAD2xgAADBrYA
Date: Mon, 12 Jun 2017 21:05:47 +0000
Message-ID: <DA1A21E8-B831-41F7-B890-BEC69C66407F@on.nokia.com>
References: <38420507dd4a4d0ab1e82ff5a8c07a00@usma1ex-dag1mb1.msg.corp.akamai.com> <3A8069D0-9194-4773-A991-31DC70891912@vigilsec.com> <10401162-CE07-4612-BC02-AC9591F2F8F0@on.nokia.com> <10D554E3-B5C0-4587-B0D9-B36AA37AC2F4@vigilsec.com> <CAL02cgQrAgzy0kkxdA2+S=J+egepEc+S0iXVGJ4ZynO9sb-Q6w@mail.gmail.com> <151507f4b79e4bf49658f09a1586a3c7@usma1ex-dag1mb1.msg.corp.akamai.com> <9a537639-85bc-da17-c5fe-388a7cff5c8e@gmail.com>
In-Reply-To: <9a537639-85bc-da17-c5fe-388a7cff5c8e@gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=nokia.com;
x-originating-ip: [2.96.98.46]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; VI1PR07MB1037; 7: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
x-forefront-antispam-report: SFV:SKI; SCL:-1SFV:NSPM; SFS:(10019020)(6009001)(39410400002)(39850400002)(39400400002)(39860400002)(39840400002)(39450400003)(53484002)(24454002)(469094003)(4001350100001)(189998001)(6306002)(6512007)(53936002)(8936002)(3280700002)(3660700001)(66066001)(2950100002)(229853002)(6506006)(93886004)(38730400002)(8676002)(2906002)(83716003)(99286003)(81166006)(86362001)(107886003)(83506001)(82746002)(6246003)(4326008)(478600001)(50986999)(561944003)(5660300001)(54356999)(3846002)(6116002)(76176999)(102836003)(33656002)(966005)(5250100002)(2900100001)(6486002)(2501003)(39060400002)(7736002)(6436002)(14454004)(25786009)(305945005)(53546009); DIR:OUT; SFP:1102; SCL:1; SRVR:VI1PR07MB1037; H:VI1PR07MB1102.eurprd07.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
x-ms-office365-filtering-correlation-id: 05f489f7-d3ca-4ff5-adc6-08d4b1d6ccad
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(48565401081)(201703131423075)(201703031133081)(201702281549075); SRVR:VI1PR07MB1037;
x-ms-traffictypediagnostic: VI1PR07MB1037:
x-microsoft-antispam-prvs: <VI1PR07MB10371619B810D4D2B9EFF7FC80CD0@VI1PR07MB1037.eurprd07.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(10201501046)(100000703101)(100105400095)(3002001)(93006095)(93001095)(6055026)(6041248)(20161123564025)(20161123558100)(20161123555025)(20161123560025)(20161123562025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:VI1PR07MB1037; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:VI1PR07MB1037;
x-forefront-prvs: 03361FCC43
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <BA7B00834B9CAD4A87DCC945FACDFADE@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: nokia.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Jun 2017 21:05:48.0053 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB1037
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/HuXhXcj5IS1g_wKgiYN6ou9BH3Y>
Subject: Re: [Acme] Call for adoption STAR (short-term automatically-renewed) certificates
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Jun 2017 21:05:54 -0000
Hi Melinda, On 12/06/2017, 21:39, "Acme on behalf of Melinda Shore" <acme-bounces@ietf.org on behalf of melinda.shore@gmail.com> wrote: > I think the proposal as it stands is not very clear and personally > I'd prefer to see what's in the revised document(s) before agreeing > to adoption. As I said upthread in reply to a similar concern expressed by Russ about the scope of the split draft, the new document will describe the ACME extension already documented in [1] and [2] to: - allow requesting the automatic renewal of an order; - provide the endpoint from which the automatically renewed certs are fetched; - cancel an existing recurring order before it reaches end-of-life. I hope this helps clearing your doubts. Cheers, t [1] https://tools.ietf.org/html/draft-sheffer-acme-star-02#section-3.4 [2] https://tools.ietf.org/html/draft-sheffer-acme-star-02#section-3.5
- [Acme] Call for adoption STAR (short-term automat… Salz, Rich
- Re: [Acme] Call for adoption STAR (short-term aut… Russ Housley
- Re: [Acme] Call for adoption STAR (short-term aut… Fossati, Thomas (Nokia - GB/Cambridge, UK)
- Re: [Acme] Call for adoption STAR (short-term aut… Russ Housley
- Re: [Acme] Call for adoption STAR (short-term aut… Richard Barnes
- Re: [Acme] Call for adoption STAR (short-term aut… Salz, Rich
- Re: [Acme] Call for adoption STAR (short-term aut… Melinda Shore
- Re: [Acme] Call for adoption STAR (short-term aut… Fossati, Thomas (Nokia - GB/Cambridge, UK)
- Re: [Acme] Call for adoption STAR (short-term aut… Fossati, Thomas (Nokia - GB/Cambridge, UK)