[Acme] Re: ACME and PLANTS
Ilari Liusvaara <ilariliusvaara@welho.com> Sat, 14 March 2026 08:34 UTC
Return-Path: <ilariliusvaara@welho.com>
X-Original-To: acme@mail2.ietf.org
Delivered-To: acme@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id A490FC9C525B for <acme@mail2.ietf.org>; Sat, 14 Mar 2026 01:34:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=welho.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SIG2vPTPoLOH for <acme@mail2.ietf.org>; Sat, 14 Mar 2026 01:34:24 -0700 (PDT)
Received: from smtp.dnamail.fi (sender001.dnamail.fi [83.102.40.178]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id A92C6C9C5256 for <acme@ietf.org>; Sat, 14 Mar 2026 01:34:24 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by smtp.dnamail.fi (Postfix) with ESMTP id BE94A211391C for <acme@ietf.org>; Sat, 14 Mar 2026 10:34:17 +0200 (EET)
X-Virus-Scanned: X-Virus-Scanned: amavis at smtp.dnamail.fi
Received: from smtp.dnamail.fi ([83.102.40.178]) by localhost (dmail-psmtp01.s.dnaip.fi [127.0.0.1]) (amavis, port 10024) with ESMTP id znke97pojkwb for <acme@ietf.org>; Sat, 14 Mar 2026 10:34:17 +0200 (EET)
Received: from LK-Perkele-VII2 (87-92-117-27.bb.dnainternet.fi [87.92.117.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: hliusvaa@dnamail.internal) by smtp.dnamail.fi (Postfix) with ESMTPSA id 23C312113E00 for <acme@ietf.org>; Sat, 14 Mar 2026 10:34:17 +0200 (EET)
DKIM-Filter: OpenDKIM Filter v2.11.0 smtp.dnamail.fi 23C312113E00
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=welho.com; s=2025-03; t=1773477257; bh=ym5DYVsfPVDrDVp1CPLyOQEciH663SdkzropPHP+a8E=; h=Date:From:To:Subject:References:In-Reply-To:From; b=ICyRubKUk23J8LwnUQToC7rWd7/A5Fqo9HEzCRtmblQ26HToh33Imy87XfN8uG9Si n6s8jzhOL2lvzmEVLoZYQ5oo2yLA/JVDPGnCDaKWTEJ9PjU7z/Ica7GjctVtix7wxl qnY/sQd9A+7QUT5M6OoyriKRDTzGqRX0zcYl80xZVkLLnVBH11LFvp30/8YBXUUSv5 c666tAvUGks2HviNkpa0dDFa5NCUq7o+wSBpBT88Z8r0fQ6uqBl+Xg2UIpoDpGEZVX +CjkStWDhJRZuMsBcXCc04c5rQQnvh27NIgpLlgUX0/xaTJiiXHI0t7AuNMsssN2F9 KGJNAR2TZzW3g==
Date: Sat, 14 Mar 2026 10:34:16 +0200
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: IETF ACME <acme@ietf.org>
Message-ID: <abUdiLiayOeysz5U@LK-Perkele-VII2.locald>
References: <CAF8qwaApZbT5C1q3-g5yTPxYJTuJeZqMgb=_Gu=hqYRnrtiJkA@mail.gmail.com> <abMdm49TFzXz5K4H@LK-Perkele-VII2.locald> <CAF8qwaCfV8G52oGMbuktBZ_-mvmaPghD5Zi_eZpdrad_+E3R4Q@mail.gmail.com> <abQOXHRLvxL8H6zG@LK-Perkele-VII2.locald> <6243.1773440227@obiwan.sandelman.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <6243.1773440227@obiwan.sandelman.ca>
Sender: ilariliusvaara@welho.com
Message-ID-Hash: PAWTUOHKHJNE4UNBPDVZFUV5W6NITHH5
X-Message-ID-Hash: PAWTUOHKHJNE4UNBPDVZFUV5W6NITHH5
X-MailFrom: ilariliusvaara@welho.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-acme.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Acme] Re: ACME and PLANTS
List-Id: Automated Certificate Management Environment <acme.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/ZO8HzKcvY-T7yNAk5a_dAc6uta8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Owner: <mailto:acme-owner@ietf.org>
List-Post: <mailto:acme@ietf.org>
List-Subscribe: <mailto:acme-join@ietf.org>
List-Unsubscribe: <mailto:acme-leave@ietf.org>
On Fri, Mar 13, 2026 at 06:17:07PM -0400, Michael Richardson wrote: > > Ilari Liusvaara <ilariliusvaara@welho.com> wrote: > >> Yup. You can think of MTCs as "just" a very funny signature scheme for > >> signing certificates. So it's all flavors of picking which CA instance to > >> respond with, whether a MTC CA instance vs a traditional CA instance, or a > >> PQ CA instance vs an ECDSA CA instance. > > > The X.509 code from TLS library I have written thinks MTCs are > > malformed. Extending that code to handle MTCs is not acceptable due to > > security concerns. > > Do you prefer to have a different set of routines to process MTC PKIX then? > And the application level (or TLS level) has to be aware of the difference? > I can see lots of good reasons to do this long-term: a future steady state > where 5280 certicates do not exist, so one can get rid of that "legacy" > library code. Yes, a different set of routines. As for application level changes, it is mainly new APIs to provision MTC certificates, and MTC trusted logs. And there might be some oddball server-end APIs that need tweaking for MTC client certificates. The main reason for different code is not eventually ripping out the "legacy" code, but that MTC and classical X.509 work very differently: - The classical X.509 negotiation code can not be easily extended to handle the kind of negotiation MTC needs. - The APIs X.509 negotiation uses for certificate provisioning are not realy compatible with MTC. - Defaults are hard, so X.509 can act as fallback for MTC. - Classical X.509 is hierarchial, but MTCs are not, so validation code needs to handle those differently. And there are security issues here. - The non-hierarchial nature of MTC renders many extensions nonsensical, so merely trying to parse that stuff gives plenty of nonsense. - The "signature" is something very different from signature. Even for standalone certificates. > >> Then the server operator would glue it all together by arranging for the > >> ACME client to run on a cron job. And since that cron job both has access > >> to authentication and ACME state, the fact that ACME authenticates all its > >> URLs is not a huge deal. > > > What if the authentication fails? > > Huh? why would that occur. Seems broken, period. > How would you do account linkage over time? Configuration. Which can change out-of-sync with certificates. In ACME client I wrote: - Configuration specifies directory URL and account key for each ACME server. - Configuration specifies which ACME server is the default. - Each certificate request can override the ACME server to use. That gives plenty of room for getting the certificate account out of sync. And even if one manages to break ARI with this, things do not go south very much. And even saving the directory URL and account key in certificate would not help against somebody overwriting the account key file with a new key (for "security" purposes). > >> A separate unauthenticated URL would suggest a > >> world where the server operator has a *separate* scheduled job that's have > >> the ACME account key, but does have read/write access to certificate state. > >> I assumed that doesn't currently exist and we may as well piggy-back off > >> the existing job schedulingn. > > > Even if the job runs in the same process as certificate renewal, > > determining which ACME account key to use can be difficult. > > That's seems like a limitation of the code, not something the protocol should > compensate for. There are ACME clients that can use multiple CAs for fallback purposes. -Ilari
- [Acme] ACME and PLANTS David Benjamin
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS David Benjamin
- [Acme] Re: ACME and PLANTS Mike Ounsworth
- [Acme] Re: ACME and PLANTS Michael Richardson
- [Acme] Re: ACME and PLANTS Michael Richardson
- [Acme] Re: ACME and PLANTS David Benjamin
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS Michael Richardson
- [Acme] Re: ACME and PLANTS Aaron Gable
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS Aaron Gable
- [Acme] Re: ACME and PLANTS Ilari Liusvaara
- [Acme] Re: ACME and PLANTS Jacob Hoffman-Andrews
- [Acme] Re: ACME and PLANTS Seo Suchan
- [Acme] Re: ACME and PLANTS Aaron Gable
- [Acme] Re: ACME and PLANTS Michael Richardson
- [Acme] Re: ACME and PLANTS Ilari Liusvaara