Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-25 Thread Yaron Sheffer
On 25/06/17 03:52, Martin Thomson wrote: On 24 June 2017 at 02:24, Yaron Sheffer wrote: Expires is to ensure that the certificate is not cached beyond the point where a newer certificate will be issued. You should remove this text. OK Is there some other common

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-24 Thread Martin Thomson
On 24 June 2017 at 02:24, Yaron Sheffer wrote: >>> Expires is to ensure that the certificate is not >>> cached beyond the point where a newer certificate will be issued. You >>> should remove this text. >> >> OK > > Is there some other common header to denote that the

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-23 Thread Yaron Sheffer
Hi Martin, Thomas, Hi Martin, Thanks for your review. On 19/06/2017, 23:34, "Acme on behalf of Martin Thomson" wrote: A few brief comments on this draft. [snip] I don't understand Section 3.3 at all. I'd recommend removing

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-22 Thread Fossati, Thomas (Nokia - GB/Cambridge, UK)
Hi Martin, Thanks for your review. On 19/06/2017, 23:34, "Acme on behalf of Martin Thomson" wrote: > > A few brief comments on this draft. > > On 16 June 2017 at 22:19, wrote: > This memo proposes an

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-19 Thread Salz, Rich
As chair: Thanks for the detailed review. As an individual: I agree we need a new term other than CDN. All the good words are taken, but perhaps Agent works? > draft-iab-web-pki-problems has been abandoned. I didn't notice that. Rats. -- Senior Architect, Akamai Technologies Member,

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-19 Thread Martin Thomson
One further thought. ACME uses an absolute time for expiration. This uses a relative time. I think that I prefer the former. I realize that consistency might be impossible in this case, since the recurrent duration is necessarily relative, but I though it worth raising. On 19 Jun. 2017 10:08 am,

Re: [Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-18 Thread Martin Thomson
A few brief comments on this draft. On 16 June 2017 at 22:19, wrote: >This memo proposes an ACME extension to enable the issuance of short- >term and automatically renewed certificates. This allows a domain >name owner to delegate the use of certificates

[Acme] I-D Action: draft-ietf-acme-star-00.txt

2017-06-16 Thread internet-drafts
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Automated Certificate Management Environment of the IETF. Title : Use of Short-Term, Automatically-Renewed (STAR) Certificates to Delegate Authority over Web Sites