SCEP is NOT the worldwide deployed standard, ACME is. This draft use the mature ACME facility to realize other certificate automation, this is the easy way than any other standard.
Best Regards Richard Wang From: Dirk-Willem van Gulik <[email protected]> Sent: Thursday, July 24, 2025 3:39 PM To: Q Misell <[email protected]> Cc: [email protected]; Michael Richardson <[email protected]>; Mike Ounsworth <[email protected]>; IETF ACME <[email protected]> Subject: [Acme] Re: Personal review of draft-ietf-acme-client On 24 Jul 2025, at 09:33, Q Misell <[email protected] <mailto:[email protected]> > wrote: > Grok told me that "EST Server Scenario: An enterprise with an internal CA uses an EST server to issue certificates for IoT devices", but we need ACME for public CA to issue publicly trusted certificate. Not to constantly relitigate the value of LLMs, but what Grok has hallucinated here is not what EST can do, but rather what it has traditionally been used for. There is nothing to say it can't be used in a different context to how it is most commonly used. Or when on that topic - SCEP (https://datatracker.ietf.org/doc/html/rfc8894) for giving IoT devices or other sundry their client certs. Dw.
_______________________________________________ Acme mailing list -- [email protected] To unsubscribe send an email to [email protected]
