I-D Action: draft-ietf-acme-star-delegation-09.txt
internet-drafts@ietf.org Fri, 11 June 2021 08:27 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3EF6B3A2EB3; Fri, 11 Jun 2021 01:27:37 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: acme@ietf.org
Subject: I-D Action: draft-ietf-acme-star-delegation-09.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 7.31.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: acme@ietf.org
Message-ID: <162340005717.16655.1882354597005988087@ietfa.amsl.com>
Date: Fri, 11 Jun 2021 01:27:37 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/wSYQgI4JtWiBL986t__yBSV7uRA>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Jun 2021 08:27:38 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Automated Certificate Management Environment WG of the IETF. Title : An ACME Profile for Generating Delegated Certificates Authors : Yaron Sheffer Diego López Antonio Agustín Pastor Perales Thomas Fossati Filename : draft-ietf-acme-star-delegation-09.txt Pages : 48 Date : 2021-06-11 Abstract: This document defines a profile of the Automatic Certificate Management Environment (ACME) protocol by which the holder of an identifier (e.g., a domain name) can allow a third party to obtain an X.509 certificate such that the certificate subject is the delegated identifier while the certified public key corresponds to a private key controlled by the third party. A primary use case is that of a Content Delivery Network (CDN, the third party) terminating TLS sessions on behalf of a content provider (the holder of a domain name). The presented mechanism allows the holder of the identifier to retain control over the delegation and revoke it at any time. Importantly, this mechanism does not require any modification to the deployed TLS clients and servers. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-acme-star-delegation/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-acme-star-delegation-09.html A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-acme-star-delegation-09 Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/
- I-D Action: draft-ietf-acme-star-delegation-09.txt internet-drafts