All, I have posted an update to the Node ID Validation document which updates references to now-published DTN RFCs (yay!) and adds algorithm agility for the Key Authorization Digest to avoid the validation method being stuck on SHA-256. It does add a publication dependency on the COSE hash document, but that is in AUTH48 (though it's been stuck in that state for some time now). Comments are welcome and can be discussed at the next IETF. Brian S.
On Wed, Mar 2, 2022 at 7:35 PM <[email protected]> wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Automated Certificate Management > Environment WG of the IETF. > > Title : Automated Certificate Management Environment > (ACME) Delay-Tolerant Networking (DTN) Node ID Validation Extension > Author : Brian Sipos > Filename : draft-ietf-acme-dtnnodeid-09.txt > Pages : 31 > Date : 2022-03-02 > > Abstract: > This document specifies an extension to the Automated Certificate > Management Environment (ACME) protocol which allows an ACME server to > validate the Delay-Tolerant Networking (DTN) Node ID for an ACME > client. The DTN Node ID is encoded as a certificate Subject > Alternative Name (SAN) of type otherName with a name form of > BundleEID and as an ACME Identifier type "bundleEID". > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-acme-dtnnodeid/ > > There is also an HTML version available at: > https://www.ietf.org/archive/id/draft-ietf-acme-dtnnodeid-09.html > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-acme-dtnnodeid-09 > > > Internet-Drafts are also available by rsync at rsync.ietf.org: > :internet-drafts > > > _______________________________________________ > Acme mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/acme >
_______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
