Protocol Action: 'Automated Certificate Management Environment (ACME) for Subdomains' to Proposed Standard (draft-ietf-acme-subdomains-07.txt)
The IESG <iesg-secretary@ietf.org> Mon, 20 March 2023 14:00 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 66602C169526; Mon, 20 Mar 2023 07:00:22 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Automated Certificate Management Environment (ACME) for Subdomains' to Proposed Standard (draft-ietf-acme-subdomains-07.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 9.15.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: The IESG <iesg@ietf.org>, acme-chairs@ietf.org, acme@ietf.org, debcooley1@gmail.com, draft-ietf-acme-subdomains@ietf.org, rdd@cert.org, rfc-editor@rfc-editor.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <167932082241.33775.17128242849237244291@ietfa.amsl.com>
Date: Mon, 20 Mar 2023 07:00:22 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/Q44at2cPGke4PfMsB_utIAVx2iI>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2023 14:00:22 -0000
The IESG has approved the following document: - 'Automated Certificate Management Environment (ACME) for Subdomains' (draft-ietf-acme-subdomains-07.txt) as Proposed Standard This document is the product of the Automated Certificate Management Environment Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-acme-subdomains/ Technical Summary This document specifies how Automated Certificate Management Environment (ACME) (RFC8555) can be used by a client to obtain a certificate for a subdomain identifier from a certification authority. This document specifies how a client can fulfill a challenge against an ancestor domain but may not need to fulfill a challenge against the explicit subdomain if certification authority policy allows issuance of the subdomain certificate without explicit subdomain ownership proof. Working Group Summary It has been discussed in-person at several IETF meetings. There was consensus to proceed. Document Quality The document provided improved framing language in response to IETF LC to contextualize this work in the ACME ecosystem. There is at least one implementation of this work: -- Server PoC code: https://github.com/upros/pebble -- Client PoC code: https://github.com/upros/acmez Personnel Document Shepherd: Deb Cooley Responsible Area Director: Roman Danyliw