fyi: proposed BCP on SSL certificates

• From: Frederick Hirsch <frederick.hirsch@nokia.com>
• Date: Tue, 11 May 2010 20:17:49 -0400
• To: XMLSec WG Public List <public-xmlsec@w3.org>
• Cc: Frederick Hirsch <frederick.hirsch@nokia.com>
• Message-Id: <B301DC86-53B8-4A68-A47B-F4C2EBD3C9D8@nokia.com>

fyi, in case you are interested in providing feedback.

regards, Frederick

Frederick Hirsch
Nokia



Begin forwarded message:

> From: ext Peter Saint-Andre <stpeter@stpeter.im>
> Date: May 11, 2010 4:45:37 PM EDT
> To: "public-web-security@w3.org" <public-web-security@w3.org>
> Cc: =JeffH <Jeff.Hodges@kingsmountain.com>
> Subject: proposed BCP on SSL certificates
>
> Jeff Hodges and I have been working on a specification about the
> representation and verification of application server identity in
> certificates:
>
> http://tools.ietf.org/html/draft-saintandre-tls-server-id-check-04
>
> This is meant to be a pragmatic set of best practices on the
> implementation and deployment of certificate-based SSL for HTTP and
> other application protocols, focusing on both certificate issuance and
> certificate validation.
>
> The core of the document is only 14 pages, so I hope that some folks  
> on
> this list will have time to read it and provide feedback here or on  
> the
> certid@ietf.org list <https://www.ietf.org/mailman/listinfo/certid>.
>
> Many thanks,
>
> Peter
>
> -- 
> Peter Saint-Andre
> https://stpeter.im/
>
>
>

Received on Wednesday, 12 May 2010 00:18:52 UTC