- From: Daisuke Ajitomi <notifications@github.com>
- Date: Sun, 08 Oct 2017 21:54:29 -0700
- To: httpslocal/usecases <usecases@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Monday, 9 October 2017 04:55:01 UTC
> - certificates and PKI - [ACME](https://tools.ietf.org/html/draft-ietf-acme-acme-07): IETF ACME WG is mainly developing a specification of the framework for certificate authorities to issue DV (domain verified) server certificates automatically. The framework (called ACME framework) has been standardized based on existing technologies which is utilized by free automated certificate authority service [Let’s Encrypt](https://letsencrypt.org). I think that it is meaningful for us to think of a server certificate issuing mechanism for devices in local network based on ACME. - [Use of Short-Term Automatically Renewed (STAR) Certificates to Delegate Authority over Web Sites](https://tools.ietf.org/html/draft-ietf-acme-star-00): This is one of ACME extensions and focuses on the use cases that intermediate nodes (e.g., load balancers in cloud environments, edge servers in CDNs) have to terminate TLS sessions. The draft defines the way for authorities (domain name owners) to delegate the use of the certificates to the intermediate nodes above. Since devices in local network cannot obtain DV certs directly, such a delegation mechanism might be helpful for our solutions. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/httpslocal/usecases/issues/7#issuecomment-335066646
Received on Monday, 9 October 2017 04:55:01 UTC