Joseph Lorenzo Hall <j...@cdt.org> wrote:
> Let?s Encrypt will employ a number of new technologies to manage
> secure automated verification of domains and issuance of certificates.
> We will use a protocol we?re developing called ACME between web
> servers and the CA, which includes support for new and stronger forms
> of domain validation. We will also employ Internet-wide datasets ofThis is exciting; any interaction with cacert.org? So, some kind of online certificate enrollment. What protocols? What open source? I don't think this is is this going to help eliminate the invalid certificates that seem inevitable from things like ILOMs/iDRAC/etc. because the https interface to the service processor never knows what zone it will use. I'd love to find a way for such appliance uses of HTTPS to come up secure in some way. -- Michael Richardson <mcr+i...@sandelman.ca>, Sandelman Software Works -= IPv6 IoT consulting =-
pgpymOYI52SMD.pgp
Description: PGP signature
_______________________________________________ perpass mailing list perpass@ietf.org https://www.ietf.org/mailman/listinfo/perpass
