> I think that it could be acceptable to "reuse" an old validation provided > WHOIS > is checked right? > Eg, if a hash is made of all the WHOIS data, and all the WHOIS data stays > identical from last validation, then theres proof that control of domain has > not > shifted in the meantime, which is the main reason to implement random > challenge checks.
No. See the BRs for what "reuse" means. People have to stop re-interpreting the BRs to mean what they want them to mean. You don't get to make up your own methods that satisfy whatever "main reason" that you believe motivates the requirements. That's method 11, which we spent over a year removing (and for good reason). -Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
