Protocol Action: 'Delegated Credentials for (D)TLS' to Proposed Standard (draft-ietf-tls-subcerts-15.txt)
The IESG <iesg-secretary@ietf.org> Mon, 03 October 2022 19:42 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 084ECC15259C; Mon, 3 Oct 2022 12:42:42 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Delegated Credentials for (D)TLS' to Proposed Standard (draft-ietf-tls-subcerts-15.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 8.17.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: Joseph Salowey <joe@salowey.net>, The IESG <iesg@ietf.org>, draft-ietf-tls-subcerts@ietf.org, joe@salowey.net, paul.wouters@aiven.io, rfc-editor@rfc-editor.org, tls-chairs@ietf.org, tls@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <166482616202.58836.4755868147642683212@ietfa.amsl.com>
Date: Mon, 03 Oct 2022 12:42:42 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/T2M7-1vO9pCyFnIbxCKtvKPheiw>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Oct 2022 19:42:42 -0000
The IESG has approved the following document: - 'Delegated Credentials for (D)TLS' (draft-ietf-tls-subcerts-15.txt) as Proposed Standard This document is the product of the Transport Layer Security Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-tls-subcerts/ Technical Summary The organizational separation between operators of TLS and DTLS endpoints and the certification authority can create limitations. For example, the lifetime of certificates, how they may be used, and the algorithms they support are ultimately determined by the certification authority. This document describes a mechanism to overcome some of these limitations by enabling operators to delegate their own credentials for use in TLS and DTLS without breaking compatibility with peers that do not support this specification. Working Group Summary There is good consensus for this document with the working group. There was some delay in getting issues addressed from the previous WGLC and a delay in publishing a revised draft with the required changes. There is interest in the working group to see this document move forward. Document Quality Several vendors have indicated they will support the draft and more than one implementation exists. There are test vectors available for the draft, but the authors and chairs decided to wait until they are verified before including them in the draft. Personnel Joe Salowey is the document Shepherd. Paul Wouters is the Responsible Area Director. The IANA Expert(s) for the registries in this document are Yoav Nir, Rich Salz, Nick Sullivan.