Document Action: 'Certificate Transparency' to Experimental RFC (draft-laurie-pki-sunlight-12.txt)
The IESG <iesg-secretary@ietf.org> Thu, 18 April 2013 17:45 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietfa.amsl.com
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1029121F8FAA for <ietf-announce@ietfa.amsl.com>; Thu, 18 Apr 2013 10:45:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.465
X-Spam-Level:
X-Spam-Status: No, score=-102.465 tagged_above=-999 required=5 tests=[AWL=0.135, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lNCTbnePN6R3; Thu, 18 Apr 2013 10:45:02 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D5B621F8FED; Thu, 18 Apr 2013 10:45:02 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Document Action: 'Certificate Transparency' to Experimental RFC (draft-laurie-pki-sunlight-12.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 4.44
Message-ID: <20130418174502.3193.20988.idtracker@ietfa.amsl.com>
Date: Thu, 18 Apr 2013 10:45:02 -0700
Cc: RFC Editor <rfc-editor@rfc-editor.org>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-announce>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Apr 2013 17:45:03 -0000
The IESG has approved the following document: - 'Certificate Transparency' (draft-laurie-pki-sunlight-12.txt) as Experimental RFC This document has been reviewed in the IETF but is not the product of an IETF Working Group. The IESG contact person is Stephen Farrell. A URL of this Internet Draft is: http://datatracker.ietf.org/doc/draft-laurie-pki-sunlight/ Technical Summary This document describes an experimental protocol for publicly logging the existence of TLS certificates as they are issued or observed, in a manner that allows anyone to audit certificate authority activity and notice the issuance of suspect certificates, as well as to audit the certificate logs themselves. The intent is that eventually clients would refuse to honor certificates which do not appear in a log, effectively forcing CAs to add all issued certificates to the logs. Logs are network services which implement the protocol operations for submissions and queries that are defined in this document. Working Group Summary This is an AD sponsored document. It has been discussed on therightkey@ietf.org starting in September 2012. It has undergone two IETF last calls, the 2nd due to the authors changing (based on LC comments) to request a TLS codepoint that required IETF Review. There's also a google group list. [1] The plan would be to allow some experimentation to happen. [1] https://groups.google.com/group/certificate-transparency Document Quality Google have an implementation. [2] The document was updated on March 20th to -09 but only to add some new acknowledgements and a clarification about error content. [2] http://code.google.com/p/certificate-transparency/ Personnel Stephen Farrell is the shepherd and AD.