Hi ACME folks, I'd like to bring this proposed extension to ACME to the attention of the working group. This work builds on Alexei's document defining the "email" identifier type, and defines (1) a mechanism for validating email addresses using SSO, and (2) some CAA mechanisms to manage issuance of certificates with email addresses.
I would like for the ACME WG to take this on as a work item, as a logical next step following on draft-ietf-acme-email-smime. Any feedback on the draft would be very welcome. Thanks, --Richard ---------- Forwarded message --------- From: <internet-dra...@ietf.org> Date: Tue, Dec 8, 2020 at 10:09 AM Subject: New Version Notification for draft-biggs-acme-sso-00.txt To: Andrew Biggs <a...@cisco.com>, Richard L. Barnes <r...@ipv.sx> A new version of I-D, draft-biggs-acme-sso-00.txt has been successfully submitted by Richard Barnes and posted to the IETF repository. Name: draft-biggs-acme-sso Revision: 00 Title: Automated Certificate Management Environment (ACME) Extension for Single Sign On Challenges Document date: 2020-12-08 Group: Individual Submission Pages: 12 URL: https://www.ietf.org/archive/id/draft-biggs-acme-sso-00.txt Status: https://datatracker.ietf.org/doc/draft-biggs-acme-sso/ Html: https://www.ietf.org/archive/id/draft-biggs-acme-sso-00.html Htmlized: https://tools.ietf.org/html/draft-biggs-acme-sso-00 Abstract: This document specifies an extension to the ACME protocol [RFC8555] to enable ACME servers to validate a client's control of an email identifier using single sign-on (SSO) technologies. An extension to the CAA [RFC8659] resource record specification is also defined to provide domain owners a means to declare a set of SSO providers that ACME servers may rely upon when employing SSO for identifier validation on their domain. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
_______________________________________________ Acme mailing list Acme@ietf.org https://www.ietf.org/mailman/listinfo/acme