[Secdispatch] IETF 102: draft-sheffer-acme-star-request for consideration
Yaron Sheffer <yaronf.ietf@gmail.com> Mon, 02 July 2018 11:06 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CDF7130F2B; Mon, 2 Jul 2018 04:06:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lt18cWEtMnxb; Mon, 2 Jul 2018 04:06:30 -0700 (PDT)
Received: from mail-pf0-x241.google.com (mail-pf0-x241.google.com [IPv6:2607:f8b0:400e:c00::241]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A7541130F13; Mon, 2 Jul 2018 04:06:27 -0700 (PDT)
Received: by mail-pf0-x241.google.com with SMTP id y8-v6so7355907pfm.10; Mon, 02 Jul 2018 04:06:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:cc:from:subject:message-id:date:user-agent:mime-version :content-language; bh=fEbqAGcayB4X7xc7IJjfiRA+g5obONMq8PThclUW4wg=; b=c2ncbArgdhNL7ODJityHgSbnN0viHMkFqUQN9ePh8FcSOGT9CcCkEOL6oRznScrvAt 356xoK0EvIXcT38WOOmdqjPbCqkWyaeOnf1BdKfqEbepdAS1nX6efJRdelEe8X9N0A+B qRGnn1lFrQg3Y9rsHh4GL4MCJ30Ke7+B3HN0wnEXONfP4WyeHnT+x3fyOJyXdtpzUpQi i0uf0xojy2vrnqyoe5guO+QGekx6sevRUI+NgFHfVGTcdgm6dwOEjAGDjEFF1kYteTl9 jFrPL6RZKuKWVFEeMVNKlcuWmpTVFiwHsIU2nXM/7aAZ1e7BIY1eABsEyFvZk4/9CXnu j5xQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:cc:from:subject:message-id:date:user-agent :mime-version:content-language; bh=fEbqAGcayB4X7xc7IJjfiRA+g5obONMq8PThclUW4wg=; b=sdEbpp0QAIqwifnFJk9msnarCFofIBKHGin94kowZe1Y/KXVGBpedlOiy7C3AdTqlm 17Q6tjO9/FIaOD+b5k6C5KgkzLHVjz6v0T6Ytt8ib/k5SVgC49BkG4nkpJMsPvzxQ4GL HIy5dFUziKEWKEJepj65r2htVsOgVuYJCfz+nLzFAnim5HIGQeHTX6voz5bgAcJ3HFC3 jdSs+Qg4NnkDKR4PNDFbcqSCsEx6ahsDXXn13tngyvPGiD5MvL+OPgfA4Xu3Qz/1Djq2 NeK0B0O04B1u0R5u4ap6O2zSkUgGfmPE9RVHA8s5przrfP2XEpl/WfVJSjgBw+WsoWuE Lqew==
X-Gm-Message-State: APt69E1J7WRGdS81YkNaTQBWh5+5ec+DaKdyAyDOkShHX1Z3CoyVTGw6 K7KgDtmrSn8t07DIMUVl2XEqwUjR
X-Google-Smtp-Source: AAOMgpeQvKB5TiYOCGsqQoO3E2ZhjxeLpQfSjUwQHDGDDFDDV4EcXC6ApfcCwjv7wYXsI5TmiUuFhA==
X-Received: by 2002:a63:5a5e:: with SMTP id k30-v6mr6690077pgm.123.1530529586673; Mon, 02 Jul 2018 04:06:26 -0700 (PDT)
Received: from [172.18.129.55] (bzq-202-11.red.bezeqint.net. [212.179.202.11]) by smtp.gmail.com with ESMTPSA id w1-v6sm22843565pgo.72.2018.07.02.04.06.23 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 02 Jul 2018 04:06:25 -0700 (PDT)
To: secdispatch@ietf.org
Cc: draft-sheffer-acme-star-request@ietf.org
From: Yaron Sheffer <yaronf.ietf@gmail.com>
Message-ID: <68049d34-4403-bc28-c691-5f14bf2c0ab0@gmail.com>
Date: Mon, 02 Jul 2018 14:06:19 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------36BBD3F4E4A887793F6292EF"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/H-DM58C5bZRGt9YEwXuD2k1LWqM>
Subject: [Secdispatch] IETF 102: draft-sheffer-acme-star-request for consideration
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jul 2018 11:06:33 -0000
Dear SecDispatch chairs, We would like to submit draft-sheffer-acme-star-request-02 (https://datatracker.ietf.org/doc/draft-sheffer-acme-star-request/) for discussion in Montreal. If added, it will be presented by Diego R. Lopez. The draft is part of the STAR (short-term, automatically renewed certificates) work that grew out of the LURK BoF. Initially we had one draft. We split it into two: 1. An ACME extension draft that's now a WG document at ACME. 2. The current draft that describes a very simple API where the delegate requests the owner of the identity (normally, the owner of a domain name) to initiate the ACME certificate issuance process for a STAR certificate. This STAR certificate is later pulled periodically by the delegate. As the next step, we can see this draft moving into ACME as well because of its relation to the other draft, even though it is not strictly an ACME extension. We do not see a viable working group for this draft alone, so our alternative proposal would be for AD-sponsored publication. We note that both drafts have an active community around them as well as existing implementations. Thanks, Yaron
- Re: [Secdispatch] IETF 102: draft-sheffer-acme-st… Yaron Sheffer
- Re: [Secdispatch] IETF 102: draft-sheffer-acme-st… Michael Richardson
- [Secdispatch] IETF 102: draft-sheffer-acme-star-r… Yaron Sheffer
- Re: [Secdispatch] IETF 102: draft-sheffer-acme-st… Melinda Shore