- From: Peter Saint-Andre <stpeter@stpeter.im>
- Date: Tue, 11 May 2010 14:45:37 -0600
- To: public-web-security@w3.org
- CC: =JeffH <Jeff.Hodges@kingsmountain.com>
Received on Tuesday, 11 May 2010 20:46:14 UTC
Jeff Hodges and I have been working on a specification about the representation and verification of application server identity in certificates: http://tools.ietf.org/html/draft-saintandre-tls-server-id-check-04 This is meant to be a pragmatic set of best practices on the implementation and deployment of certificate-based SSL for HTTP and other application protocols, focusing on both certificate issuance and certificate validation. The core of the document is only 14 pages, so I hope that some folks on this list will have time to read it and provide feedback here or on the certid@ietf.org list <https://www.ietf.org/mailman/listinfo/certid>. Many thanks, Peter -- Peter Saint-Andre https://stpeter.im/
Received on Tuesday, 11 May 2010 20:46:14 UTC