[httpslocal/proposals] Extending Web PKI for local network devices (#5) from Tomoyuki Shimizu on 2018-09-18 (public-httpslocal@w3.org from September 2018)

From: Tomoyuki Shimizu <notifications@github.com>
Date: Tue, 18 Sep 2018 02:02:46 -0700
To: httpslocal/proposals <proposals@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <httpslocal/proposals/issues/5@github.com>

This is a meta issue to collect and discuss ideas and proposals that would extend the current Web PKI model. Examples are:

- [TLS certificate issuance integrated with DNS-SD](https://www.w3.org/wiki/images/6/6c/TPAC2016_Local_Discovery_and_HTTPS.pdf)
- [TLS certificate issuance with out-of-band attestation challenge](https://www.w3.org/wiki/images/e/e9/TPAC2017_httpslocal-2.pdf) (see [Approach #3](https://github.com/dajiaji/proposals/blob/abstract_proposal/draft_proposal_supporting_local_https_communication.md#53-approach-3) in #2)

As you may know, Web PKI assumes that server certificates can be validated based on globally unique server names. In other words, locally unique device names might not be compatible with Web PKI. This meta issue is to explore possible extension or modification of Web PKI for local network devices.

Any comments or additional proposals are welcome!

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/httpslocal/proposals/issues/5

Received on Tuesday, 18 September 2018 09:03:14 UTC