> Yep, I get that. I might be misreading it, but it looked like the > suggestion of a /.well-known URI for account keys would impact all > ACME users, not just those using Simple HTTP validation. I didn't fully expand the idea, but my assumption was that similar continuous publication techniques could apply to other challenge types. For instance, DVSNI could involve answering for a <identifier>.acme.invalid at any time with a test certificate embedding a list of account keys or account key hashes in some format. Similarly, one could publish a list of account key hashes in DNS.
_______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
