Protocol Action: 'Server-based Certificate Validation Protocol (SCVP)' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Tue, 25 September 2007 20:00 UTC
Return-path: <owner-ietf-pkix@mail.imc.org>
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IaGZf-0003oR-0i for pkix-archive@lists.ietf.org; Tue, 25 Sep 2007 16:00:03 -0400
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IaGZX-0000F2-MJ for pkix-archive@lists.ietf.org; Tue, 25 Sep 2007 15:59:56 -0400
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l8PJ6TGh013426 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 25 Sep 2007 12:06:29 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id l8PJ6Tp4013424; Tue, 25 Sep 2007 12:06:29 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from ns4.neustar.com (ns4.neustar.com [156.154.24.139]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l8PJ6Q7R013412 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for <ietf-pkix@imc.org>; Tue, 25 Sep 2007 12:06:26 -0700 (MST) (envelope-from ietf@ietf.org)
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns4.neustar.com (Postfix) with ESMTP id 96A4A2AC96; Tue, 25 Sep 2007 19:06:25 +0000 (GMT)
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1IaFjl-0003DY-83; Tue, 25 Sep 2007 15:06:25 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>, pkix mailing list <ietf-pkix@imc.org>, pkix chair <pkix-chairs@tools.ietf.org>
Subject: Protocol Action: 'Server-based Certificate Validation Protocol (SCVP)' to Proposed Standard
Message-Id: <E1IaFjl-0003DY-83@stiedprstage1.ietf.org>
Date: Tue, 25 Sep 2007 15:06:25 -0400
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b
The IESG has approved the following document: - 'Server-based Certificate Validation Protocol (SCVP) ' <draft-ietf-pkix-scvp-33.txt> as a Proposed Standard This document is the product of the Public-Key Infrastructure (X.509) Working Group. The IESG contact persons are Sam Hartman and Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-pkix-scvp-33.txt Technical Summary SCVP allows a client to delegate certificate path construction and certificate path validation to a server. The path construction or validation (e.g., making sure that none of the certificates in the path are revoked) is performed according to a validation policy, which contains one or more trust anchors. It allows simplification of client implementations and use of a set of predefined validation policies. Working Group Summary The working group expressed consensus to advance the draft to Proposed Standard. Two participants raised concerns that this protocol did not meet all the requirements of RFC 3379 and introduced significant new features. The working group investigated this claim and concluded that after minor revisions this document does meet the requirements and does not introduce significant new features. Protocol Quality This document has been reviewed by members of the ietf-pkix@imc.org mailing list and by the working group chairs. The protocol seems reasonable. This has been reviewed by Sam Hartman for the IESG.