Some proposed extensions to the Automated Certificate Management
Environment (ACME) rely on proving eligibility for certificates
through consulting an external authority that issues a token
according to a particular policy. This document specifies a generic
Authority Token challenge for ACME which supports subtype claims for
different identifiers or namespaces that can be defined separately
for specific applications.
Working Group Summary
This work was done primarily be members of the STIR WG working in ACME but coordinating with STIR.
This document is a companion to draft-ietf-acme-authority-token. Both are needed for a complete solution.
There are vendors, in STIR, who intend to implement this as the base document for TNAuthList.
Rich Salz is the shepherd
Roman Danyliw is the AD