Skip to main content

TLS Trust Expressions
draft-davidben-tls-trust-expr-04

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors David Benjamin , Devon O'Brien , Bob Beck
Last updated 2024-12-30 (Latest revision 2024-06-28)
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

This document defines TLS trust expressions, a mechanism for relying parties to succinctly convey trusted certification authorities to subscribers by referencing named and versioned trust stores. It also defines supporting mechanisms for subscribers to evaluate these trust expressions, and select one of several available certification paths to present. This enables a multi-certificate deployment model, for a more agile and flexible PKI that can better meet security requirements.

Authors

David Benjamin
Devon O'Brien
Bob Beck

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)