anyone
interested in discussing this issue there to do so.
-Tim
From: Acme On Behalf Of Ryan Sleevi
Sent: Sunday, October 21, 2018 9:02 PM
To: Ben Kaduk
Cc: Ryan Sleevi ; Salz, Rich ;
ke...@iseclab.org; IETF ACME ; Tobias Fiebig
Subject: Re: [Acme] ACME DV Security Considerations Draft
: Re: [Acme] ACME DV Security Considerations Draft
On Sun, Oct 21, 2018 at 6:48 PM Benjamin Kaduk
mailto:ka...@mit.edu>> wrote:
On Sun, Oct 21, 2018 at 05:25:40PM +, Salz, Rich wrote:
> * It does not seem to be related to ACME - that is, what you’re
> describing is more broadly a
On Sun, Oct 21, 2018 at 6:48 PM Benjamin Kaduk wrote:
> On Sun, Oct 21, 2018 at 05:25:40PM +, Salz, Rich wrote:
> > * It does not seem to be related to ACME - that is, what you’re
> describing is more broadly a set of concerns with the methods that may be
> used to validate a domain.
> >
On Sun, Oct 21, 2018 at 05:25:40PM +, Salz, Rich wrote:
> * It does not seem to be related to ACME - that is, what you’re
> describing is more broadly a set of concerns with the methods that may be
> used to validate a domain.
>
> Perhaps ACME isn’t the right place for this, perhaps it s
* It does not seem to be related to ACME - that is, what you’re describing
is more broadly a set of concerns with the methods that may be used to validate
a domain.
Perhaps ACME isn’t the right place for this, perhaps it should be reviewed by
SecDispatch, or whatever the DNS equivalent is,
On Sun, Oct 21, 2018 at 09:37:18AM +, Tobias Fiebig wrote:
> Dear all,
> At the IETF in Montreal, I presented findings on security issues with
> domain validation in ACME, and were encouraged to write a short draft
> outlining attacks and possible defenses. We now created a first
> draft, which
Thanks for posting this.
It does not seem to be related to ACME - that is, what you’re describing is
more broadly a set of concerns with the methods that may be used to
validate a domain. For example, ACME is a strict, well-defined subset of
that which permitted by the CA/Browser Forum’s Baseline
Dear all,
At the IETF in Montreal, I presented findings on security issues with domain
validation in ACME, and were encouraged to write a short draft outlining
attacks and possible defenses. We now created a first draft, which outlines the
general structure and contents we are aiming for, see
h