The IESG has approved the following document: - 'Automated Certificate Management Environment (ACME) for Subdomains' (draft-ietf-acme-subdomains-07.txt) as Proposed Standard
This document is the product of the Automated Certificate Management Environment Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-acme-subdomains/ Technical Summary This document specifies how Automated Certificate Management Environment (ACME) (RFC8555) can be used by a client to obtain a certificate for a subdomain identifier from a certification authority. This document specifies how a client can fulfill a challenge against an ancestor domain but may not need to fulfill a challenge against the explicit subdomain if certification authority policy allows issuance of the subdomain certificate without explicit subdomain ownership proof. Working Group Summary It has been discussed in-person at several IETF meetings. There was consensus to proceed. Document Quality The document provided improved framing language in response to IETF LC to contextualize this work in the ACME ecosystem. There is at least one implementation of this work: -- Server PoC code: https://github.com/upros/pebble -- Client PoC code: https://github.com/upros/acmez Personnel Document Shepherd: Deb Cooley Responsible Area Director: Roman Danyliw _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
