- From: Thomas Roessler <tlr@w3.org>
- Date: Tue, 11 May 2010 22:57:55 +0200
- To: WSC WG public <public-wsc-wg@w3.org>
- Cc: Thomas Roessler <tlr@w3.org>
I understand that Peter would like review of this specification from members of this working group. -- Thomas Roessler, W3C <tlr@w3.org> (@roessler) Begin forwarded message: > From: Peter Saint-Andre <stpeter@stpeter.im> > Date: 11 May 2010 22:45:37 GMT+02:00 > To: public-web-security@w3.org > Cc: =JeffH <Jeff.Hodges@kingsmountain.com> > Subject: proposed BCP on SSL certificates > archived-at: <http://www.w3.org/mid/4BE9C1F1.1050900@stpeter.im> > > Jeff Hodges and I have been working on a specification about the > representation and verification of application server identity in > certificates: > > http://tools.ietf.org/html/draft-saintandre-tls-server-id-check-04 > > This is meant to be a pragmatic set of best practices on the > implementation and deployment of certificate-based SSL for HTTP and > other application protocols, focusing on both certificate issuance and > certificate validation. > > The core of the document is only 14 pages, so I hope that some folks on > this list will have time to read it and provide feedback here or on the > certid@ietf.org list <https://www.ietf.org/mailman/listinfo/certid>. > > Many thanks, > > Peter > > -- > Peter Saint-Andre > https://stpeter.im/ > > >
Received on Tuesday, 11 May 2010 20:57:58 UTC