A few brief comments on this draft.
On 16 June 2017 at 22:19, wrote:
>This memo proposes an ACME extension to enable the issuance of short-
>term and automatically renewed certificates. This allows a domain
>name owner to delegate the use of certificates
Like Russ, I find the statement very difficult to read. Would
inverting it be better?
> A CA MUST NOT issue authorize issuance if a CAA record is present unless the
> "account-uri" parameter identifies the account making a certificate issuance
> request.
On 19 June 2017 at 00:16, Salz, Rich
Thank you. For me, it addresses the issue. Russ, are you ok?
___
Acme mailing list
Acme@ietf.org
https://www.ietf.org/mailman/listinfo/acme