Re: [Acme] Practical concerns of draft-ietf-acme-ari

On Fri, Jul 21, 2023 at 2:00 PM Matthew Holt wrote: > I simply do not think there is a way to offer a wider renewal window than > the full lifetime of the certificate by offering a narrower renewal window. > I know that sounds silly, but since "backoff and retry" is the One Way to > reliably gett

Re: [Acme] Practical concerns of draft-ietf-acme-ari

Hi all, Thank you for the constructive discussion -- I'm glad others are seeing this. 😅 Aaron, thank you especially for the thoughtful reply and engaging in the discussion. Replying inline: I'm confused by the statement that "with ARI the window is reduced to just > a few minutes, hours, or day

Re: [Acme] Practical concerns of draft-ietf-acme-ari

> > This is an interesting point. ARI was first conceived > > as a way to > > improve business continuity across mass revocation events, and grew from > > there. The idea that 10-day certs might be a reality, and that revocation > > would