[lamps] Last Call: <draft-ietf-lamps-caa-issuemail-04.txt> (Certification Authority Authorization (CAA) Processing for Email Addresses) to Proposed Standard
The IESG <iesg-secretary@ietf.org> Tue, 27 June 2023 17:48 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: spasm@ietf.org
Delivered-To: spasm@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 32A37C16B5B6; Tue, 27 Jun 2023 10:48:39 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 11.3.0
Auto-Submitted: auto-generated
Precedence: bulk
CC: draft-ietf-lamps-caa-issuemail@ietf.org, housley@vigilsec.com, lamps-chairs@ietf.org, rdd@cert.org, spasm@ietf.org
Reply-To: last-call@ietf.org
Sender: iesg-secretary@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <168788811919.65287.5410640028139078195@ietfa.amsl.com>
Date: Tue, 27 Jun 2023 10:48:39 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/HVXPzUl3j810XzDLHP2jOxMcooo>
Subject: [lamps] Last Call: <draft-ietf-lamps-caa-issuemail-04.txt> (Certification Authority Authorization (CAA) Processing for Email Addresses) to Proposed Standard
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Jun 2023 17:48:39 -0000
The IESG has received a request from the Limited Additional Mechanisms for PKIX and SMIME WG (lamps) to consider the following document: - 'Certification Authority Authorization (CAA) Processing for Email Addresses' <draft-ietf-lamps-caa-issuemail-04.txt> as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the last-call@ietf.org mailing lists by 2023-07-11. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract The Certification Authority Authorization (CAA) DNS resource record (RR) provides a mechanism for domains to express the allowed set of Certification Authorities (CAs) that are authorized to issue certificates for the domain. RFC 8659 contains the core CAA specification, where Property Tags that restrict the issuance of certificates which certify domain names are defined. This specification defines a Property Tag that grants authorization to CAs to issue certificates which contain the id-kp-emailProtection key purpose in the extendedKeyUsage extension and one or more rfc822Name or otherName of type id-on-SmtpUTF8Mailbox that include the domain name in the subjectAltName extension. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-lamps-caa-issuemail/ No IPR declarations have been submitted directly on this I-D.