Automated Certificate Management Environment (ACME) for Subdomains

RFC Pub Date : 2023-08-01 DOI:10.17487/rfc9444

O. Friel, R. Barnes, T. Hollebeek, M. Richardson

{"title":"Automated Certificate Management Environment (ACME) for Subdomains","authors":"O. Friel, R. Barnes, T. Hollebeek, M. Richardson","doi":"10.17487/rfc9444","DOIUrl":null,"url":null,"abstract":"This document specifies how Automated Certificate Management Environment (ACME) can be used by a client to obtain a certificate for a subdomain identifier from a certification authority. Additionally, this document specifies how a client can fulfill a challenge against an ancestor domain but may not need to fulfill a challenge against the explicit subdomain if certification authority policy allows issuance of the subdomain certificate without explicit subdomain ownership proof. Stream: RFC: Category: Published: ISSN: Authors: Internet Engineering Task Force (IETF) 9444 Standards Track August 2023 2070-1721 O. Friel Cisco R. Barnes Cisco T. Hollebeek DigiCert M. Richardson Sandelman Software Works Status of This Memo This is an Internet Standards Track document. This document is a product of the Internet Engineering Task Force (IETF). It represents the consensus of the IETF community. It has received public review and has been approved for publication by the Internet Engineering Steering Group (IESG). Further information on Internet Standards is available in Section 2 of RFC 7841. Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at . https://www.rfc-editor.org/info/rfc9444 Copyright Notice Copyright (c) 2023 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents ( ) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions https://trustee.ietf.org/license-info Friel, et al. Standards Track Page 1 with respect to this document. Code Components extracted from this document must include Revised BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Revised BSD License. Table of","PeriodicalId":21471,"journal":{"name":"RFC","volume":"26 1","pages":"1-20"},"PeriodicalIF":0.0000,"publicationDate":"2023-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"RFC","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.17487/rfc9444","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

This document specifies how Automated Certificate Management Environment (ACME) can be used by a client to obtain a certificate for a subdomain identifier from a certification authority. Additionally, this document specifies how a client can fulfill a challenge against an ancestor domain but may not need to fulfill a challenge against the explicit subdomain if certification authority policy allows issuance of the subdomain certificate without explicit subdomain ownership proof. Stream: RFC: Category: Published: ISSN: Authors: Internet Engineering Task Force (IETF) 9444 Standards Track August 2023 2070-1721 O. Friel Cisco R. Barnes Cisco T. Hollebeek DigiCert M. Richardson Sandelman Software Works Status of This Memo This is an Internet Standards Track document. This document is a product of the Internet Engineering Task Force (IETF). It represents the consensus of the IETF community. It has received public review and has been approved for publication by the Internet Engineering Steering Group (IESG). Further information on Internet Standards is available in Section 2 of RFC 7841. Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at . https://www.rfc-editor.org/info/rfc9444 Copyright Notice Copyright (c) 2023 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents ( ) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions https://trustee.ietf.org/license-info Friel, et al. Standards Track Page 1 with respect to this document. Code Components extracted from this document must include Revised BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Revised BSD License. Table of

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

子域的ACME (Automated Certificate Management Environment)

本文档指定客户端如何使用自动证书管理环境(ACME)从证书颁发机构获取子域标识符的证书。此外，本文档还指定了客户端如何完成对祖先域的挑战，但如果证书颁发机构策略允许在没有显式子域所有权证明的情况下颁发子域证书，则可能不需要完成对显式子域的挑战。流:RFC:类别:发布:ISSN:作者:互联网工程任务组(IETF) 9444标准跟踪2023年8月2070-1721年O. Friel Cisco R. Barnes Cisco T. Hollebeek DigiCert M. Richardson Sandelman本备忘录软件工作状态这是一份互联网标准跟踪文档。本文档是IETF (Internet Engineering Task Force)的产品。它代表了IETF社区的共识。它已接受公众审查，并已被互联网工程指导小组(IESG)批准出版。有关Internet标准的更多信息可在RFC 7841的第2节中获得。有关本文档的当前状态、任何勘误表以及如何提供反馈的信息，可从以下网站获得。版权所有(c) 2023 IETF Trust和确定为文档作者的人员。版权所有。本文档受BCP 78和IETF信托基金《与IETF文档相关的法律规定》的约束，该法律规定在本文档发布之日生效。请仔细阅读这些文件，因为它们描述了您的权利和限制https://trustee.ietf.org/license-info Friel等。关于本文档的标准跟踪第1页。从本文档中提取的代码组件必须包括第4节中描述的修订BSD许可证文本。根据信托法律条款(Trust Legal Provisions)提供，且不提供修订BSD许可证中所述的保证。表

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

RFC

自引率

0.00%

发文量