The current PoP challenge hasn't been implented, and I've heard some concerns about its cryptographic safety (how does one ensure that the POP signature can't be maliciously reused as the 32 byte server signature in a DHE handshake?), though a few people have suggested alternative versions, which involve either proving possession by signing a CSR that contains a nonce field, or posting a manifest file at a browser-valid HTTPS URL. Such a manifest file could also potentially be used to pin authority-to-use-ACME to specific account keys, perhaps on a per-subdomain basis, which might be useful for large domains that (a) don't want exposure to network attacks against DV and/or (b) have a lot of subdomains with different applicable administrative constraints.
Those ideas would be proof-of-possession-02 if we were to pursue them; I believe it's safe to remove proof-of-possession-01. On Mon, Dec 28, 2015 at 04:57:57PM -0500, Richard Barnes wrote: > Hey ACME folks, > > I just updated the editor's draft to change the name of the "proof of > possession of a prior key" challenge to "proof-of-possession-01" (from > "proofOfPossession-01"). But that got me thinking -- do we actually > need this challenge? > > If I recall correctly, this was added to the initial version of the > spec because some folks from Let's Encrypt thought that they would use > it as an extra check for high-value domains with known, existing > certificates. However, they don't seem to have gotten around to > implementing it. > > Is anyone aware of CAs out there that would use > "proof-of-possession-01"? That is, CAs that keep track of existing > certificates and require an applicant for a domain with an existing > cert to prove that they hold the corresponding private key? > > If not, maybe we can streamline the spec by removing that challenge > type. It can always get re-added in a future spec if there turns out > to be a need. > > --Richard > > _______________________________________________ > Acme mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/acme > -- Peter Eckersley [email protected] Chief Computer Scientist Tel +1 415 436 9333 x131 Electronic Frontier Foundation Fax +1 415 436 9993 _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
