CDNI delegation using Automated Certificate Management Environment
draft-ietf-cdni-delegation-acme-05
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2024-02-22
|
(System) | Received changes through RFC Editor sync (changed state to RFC, created became rfc relationship between draft-ietf-cdni-delegation-acme and RFC 9538, changed IESG state to RFC … Received changes through RFC Editor sync (changed state to RFC, created became rfc relationship between draft-ietf-cdni-delegation-acme and RFC 9538, changed IESG state to RFC Published) |
|
2024-02-09
|
05 | (System) | RFC Editor state changed to AUTH48-DONE from AUTH48 |
2024-01-30
|
05 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-05.txt |
2024-01-30
|
05 | Frédéric Fieau | New version approved |
2024-01-30
|
05 | (System) | Request for posting confirmation emailed to previous authors: Frederic Fieau , Sanjay Mishra , Stephan Emile |
2024-01-30
|
05 | Frédéric Fieau | Uploaded new revision |
2024-01-26
|
04 | Gunter Van de Velde | Request closed, assignment withdrawn: Nagendra Nainar Telechat OPSDIR review |
2024-01-26
|
04 | Gunter Van de Velde | Closed request for Telechat review by OPSDIR with state 'Overtaken by Events': Cleaning up stale OPSDIR queue |
2024-01-23
|
04 | (System) | RFC Editor state changed to AUTH48 |
2023-12-12
|
04 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
2023-12-12
|
04 | (System) | IANA Action state changed to Waiting on RFC Editor from In Progress |
2023-12-12
|
04 | (System) | IANA Action state changed to In Progress from Waiting on Authors |
2023-12-12
|
04 | (System) | RFC Editor state changed to EDIT |
2023-12-12
|
04 | (System) | IESG state changed to RFC Ed Queue from Approved-announcement sent |
2023-12-12
|
04 | (System) | Announcement was received by RFC Editor |
2023-12-11
|
04 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
2023-12-11
|
04 | (System) | IANA Action state changed to In Progress |
2023-12-11
|
04 | (System) | Removed all action holders (IESG state changed) |
2023-12-11
|
04 | Cindy Morgan | IESG state changed to Approved-announcement sent from Approved-announcement to be sent |
2023-12-11
|
04 | Cindy Morgan | IESG has approved the document |
2023-12-11
|
04 | Cindy Morgan | Closed "Approve" ballot |
2023-12-11
|
04 | Cindy Morgan | Ballot approval text was generated |
2023-12-11
|
04 | Francesca Palombini | IESG state changed to Approved-announcement to be sent from Approved-announcement to be sent::AD Followup |
2023-12-07
|
04 | (System) | Changed action holders to Francesca Palombini (IESG state changed) |
2023-12-07
|
04 | (System) | Sub state has been changed to AD Followup from Revised I-D Needed |
2023-12-07
|
04 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-04.txt |
2023-12-07
|
04 | Frédéric Fieau | New version approved |
2023-12-07
|
04 | (System) | Request for posting confirmation emailed to previous authors: Frederic Fieau , Sanjay Mishra , Stephan Emile |
2023-12-07
|
04 | Frédéric Fieau | Uploaded new revision |
2023-11-09
|
03 | Barry Leiba | Closed request for Last Call review by ARTART with state 'Overtaken by Events': Document has finished IESG processing |
2023-11-09
|
03 | Barry Leiba | Assignment of request for Last Call review by ARTART to Martin Thomson was marked no-response |
2023-11-07
|
03 | Francesca Palombini | Waiting on authors to submit a new version based on IESG review. |
2023-11-07
|
03 | (System) | Changed action holders to Frédéric Fieau, Stephan Emile, Sanjay Mishra (IESG state changed) |
2023-11-07
|
03 | Francesca Palombini | IESG state changed to Approved-announcement to be sent::Revised I-D Needed from Approved-announcement to be sent::AD Followup |
2023-10-26
|
03 | Cindy Morgan | IESG state changed to Approved-announcement to be sent::AD Followup from IESG Evaluation |
2023-10-26
|
03 | Zaheduzzaman Sarker | [Ballot comment] Thanks for working on this specification, I have no objection from TSV point of views. |
2023-10-26
|
03 | Zaheduzzaman Sarker | [Ballot Position Update] New position, No Objection, has been recorded for Zaheduzzaman Sarker |
2023-10-25
|
03 | Murray Kucherawy | [Ballot Position Update] New position, No Objection, has been recorded for Murray Kucherawy |
2023-10-25
|
03 | John Scudder | [Ballot Position Update] New position, No Objection, has been recorded for John Scudder |
2023-10-25
|
03 | Andrew Alston | [Ballot Position Update] New position, No Objection, has been recorded for Andrew Alston |
2023-10-24
|
03 | Lucas Pardue | Request for Last Call review by GENART Completed: Ready. Reviewer: Lucas Pardue. Sent review to list. |
2023-10-24
|
03 | Martin Duke | [Ballot Position Update] New position, No Objection, has been recorded for Martin Duke |
2023-10-24
|
03 | Robert Wilton | [Ballot comment] Thanks for this document. It is outside my area, and I've not had time to review it closely. Just a couple of minor … [Ballot comment] Thanks for this document. It is outside my area, and I've not had time to review it closely. Just a couple of minor suggestions: Minor level comments: (1) p 2, sec 1.1. Terminology This document uses terminology from CDNI framework documents such as: CDNI framework document [RFC7336] and CDNI interface specifications documents: CDNI Metadata interface [RFC8006] and CDNI Footprint and Capabilities Advertisement interface [RFC8008]. It also uses terminology from Section 1.1 of [RFC8739]. Please check whether you mean section 1.1 or section 1.2 of RFC8739. (2) p 4, sec 3. ACME Delegation Metadata for CDNI Figure 1: Example call-flow of STAR delegation in CDNI showing 2 levels of delegation It might be helpful to define what 'CP' and 'CA' are. Note - I did try and quickly check the references in the terminology, but I didn't check that carefully so I might have missed the definitions. Regards, Rob |
2023-10-24
|
03 | Robert Wilton | [Ballot Position Update] New position, No Objection, has been recorded for Robert Wilton |
2023-10-24
|
03 | Jim Guichard | [Ballot Position Update] New position, No Objection, has been recorded for Jim Guichard |
2023-10-23
|
03 | Roman Danyliw | [Ballot comment] Thank you to Valery Smyslov for the SECDIR review. ** Section 3. Recommend citing Figure 12 of RFC9115. It appears that Figure … [Ballot comment] Thank you to Valery Smyslov for the SECDIR review. ** Section 3. Recommend citing Figure 12 of RFC9115. It appears that Figure 1 is reproducing it. ** Section 3.1 . Recommend emphasizing that the URL in acme-delegation must use the https scheme. |
2023-10-23
|
03 | Roman Danyliw | [Ballot Position Update] New position, No Objection, has been recorded for Roman Danyliw |
2023-10-23
|
03 | Paul Wouters | [Ballot Position Update] New position, No Objection, has been recorded for Paul Wouters |
2023-10-23
|
03 | Éric Vyncke | [Ballot Position Update] New position, No Objection, has been recorded for Éric Vyncke |
2023-10-20
|
03 | Erik Kline | [Ballot Position Update] New position, No Objection, has been recorded for Erik Kline |
2023-10-18
|
03 | Francesca Palombini | Ballot has been issued |
2023-10-18
|
03 | Francesca Palombini | [Ballot Position Update] New position, Yes, has been recorded for Francesca Palombini |
2023-10-18
|
03 | Francesca Palombini | Created "Approve" ballot |
2023-10-18
|
03 | Francesca Palombini | IESG state changed to IESG Evaluation from Waiting for AD Go-Ahead |
2023-10-18
|
03 | (System) | IESG state changed to Waiting for AD Go-Ahead from In Last Call |
2023-10-17
|
03 | (System) | IANA Review state changed to IANA OK - Actions Needed from IANA - Not OK |
2023-10-17
|
03 | (System) | IANA Review state changed to IANA - Not OK from IANA - Review Needed |
2023-10-17
|
03 | David Dong | (Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs: IANA has completed its review of draft-ietf-cdni-delegation-acme-03. If any part of this review is inaccurate, please let us know. IANA … (Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs: IANA has completed its review of draft-ietf-cdni-delegation-acme-03. If any part of this review is inaccurate, please let us know. IANA understands that, upon approval of this document, there is a single action which we must complete. In the CDNI Payload Types registry in the Content Delivery Network Interconnection (CDNI) Parameters registry group located at: https://www.iana.org/assignments/cdni-parameters/ a single new registration will be made as follows: Payload Type: MI.ACMEDelegationMethod Reference: [ RFC-to-be ] As this document requests a registration in an Expert Review or Specification Required (see RFC 8126) registry, we will initiate the required Expert Review via a separate request. This review must be completed before the document's IANA state can be changed to "IANA OK." We understand that this is the only action required to be completed upon approval of this document. NOTE: The action requested in this document will not be completed until the document has been approved for publication as an RFC. This message is meant only to confirm the action that will be performed. For definitions of IANA review states, please see: https://datatracker.ietf.org/help/state/draft/iana-review Thank you, David Dong IANA Services Sr. Specialist |
2023-10-17
|
03 | Valery Smyslov | Request for Last Call review by SECDIR Completed: Ready. Reviewer: Valery Smyslov. Sent review to list. |
2023-10-13
|
03 | David Dong | IANA Experts State changed to Expert Reviews OK from Reviews assigned |
2023-10-12
|
03 | David Dong | IANA Experts State changed to Reviews assigned |
2023-10-12
|
03 | Francesca Palombini | Telechat date has been changed to 2023-10-26 from 2023-10-19 |
2023-10-12
|
03 | Vladimír Čunát | Request for Last Call review by DNSDIR Completed: Ready. Reviewer: Vladimír Čunát. Sent review to list. |
2023-10-12
|
03 | Gunter Van de Velde | Request for Telechat review by OPSDIR is assigned to Nagendra Nainar |
2023-10-11
|
03 | Francesca Palombini | Placed on agenda for telechat - 2023-10-19 |
2023-10-07
|
03 | Barry Leiba | Request for Last Call review by ARTART is assigned to Martin Thomson |
2023-10-07
|
03 | Barry Leiba | Assignment of request for Last Call review by ARTART to Thomas Fossati was withdrawn |
2023-10-07
|
03 | Barry Leiba | Request for Last Call review by ARTART is assigned to Thomas Fossati |
2023-10-06
|
03 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Valery Smyslov |
2023-10-05
|
03 | Jean Mahoney | Request for Last Call review by GENART is assigned to Lucas Pardue |
2023-10-04
|
03 | Jim Reid | Request for Last Call review by DNSDIR is assigned to Vladimír Čunát |
2023-10-04
|
03 | Cindy Morgan | IANA Review state changed to IANA - Review Needed |
2023-10-04
|
03 | Cindy Morgan | The following Last Call announcement was sent out (ends 2023-10-18): From: The IESG To: IETF-Announce CC: cdni-chairs@ietf.org, cdni@ietf.org, draft-ietf-cdni-delegation-acme@ietf.org, francesca.palombini@ericsson.com, kevin.j.ma.ietf@gmail.com … The following Last Call announcement was sent out (ends 2023-10-18): From: The IESG To: IETF-Announce CC: cdni-chairs@ietf.org, cdni@ietf.org, draft-ietf-cdni-delegation-acme@ietf.org, francesca.palombini@ericsson.com, kevin.j.ma.ietf@gmail.com Reply-To: last-call@ietf.org Sender: Subject: Last Call: (CDNI delegation using Automated Certificate Management Environment) to Proposed Standard The IESG has received a request from the Content Delivery Networks Interconnection WG (cdni) to consider the following document: - 'CDNI delegation using Automated Certificate Management Environment' as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the last-call@ietf.org mailing lists by 2023-10-18. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract This document defines metadata to support delegating the delivery of HTTPS content between two or more interconnected CDNs. Specifically, this document defines a CDNI Metadata interface object to enable delegation of X.509 certificates leveraging delegation schemes defined in RFC9115. RFC9115 allows delegating entities to remain in full control of the delegation and be able to revoke it any time and this avoids the need to share private cryptographic key material between the involved entities. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-cdni-delegation-acme/ No IPR declarations have been submitted directly on this I-D. |
2023-10-04
|
03 | Cindy Morgan | IESG state changed to In Last Call from Last Call Requested |
2023-10-04
|
03 | Francesca Palombini | Last call was requested |
2023-10-04
|
03 | Francesca Palombini | Last call announcement was generated |
2023-10-04
|
03 | Francesca Palombini | Ballot approval text was generated |
2023-10-04
|
03 | Francesca Palombini | AD review posted: https://mailarchive.ietf.org/arch/msg/cdni/7O1ql3ymIZ1wvZpecdyqovau0ws/ |
2023-10-04
|
03 | Francesca Palombini | IESG state changed to Last Call Requested from AD Evaluation |
2023-10-03
|
03 | (System) | Changed action holders to Francesca Palombini (IESG state changed) |
2023-10-03
|
03 | Francesca Palombini | IESG state changed to AD Evaluation from Publication Requested |
2023-10-03
|
03 | Francesca Palombini | Ballot writeup was changed |
2023-09-02
|
03 | Kevin Ma | Document Shepherd: Kevin J. Ma Responsible AD: Francesca Palombini This draft defines/registers a CDNI Metadata object to enable credential delegation between an upstream and a … Document Shepherd: Kevin J. Ma Responsible AD: Francesca Palombini This draft defines/registers a CDNI Metadata object to enable credential delegation between an upstream and a downstream CDN. The CDNI Metadata Interface (RFC8006) was designed to be extensible and defines a registry for new metadata objects to which the ACMEDelegationMethod object is being added. The draft has been around for over six years. There was broad consensus that CDNI should support credential delegation once credential delegation protocols were defined by other working groups. CDNI is not chartered to define credential delegation protocols, therefore it was determined that the draft would wait for completion of the ACME STAR and/or TLS subcerts drafts in their respective working groups. As ACME STAR neared completion, the draft was split into two drafts, one for ACME STAR and the other for TLS subcerts. There were no major controversies or discontent. Discussions were primarily around scope, specifically, minimizing the contents of the draft to only what is needed for CDNI to support delegation and avoiding any implementation of security protocols. CDNI supports configuration and capability negotiation between CDNs; it does not implement security protocols. The draft specifically provides for configuring ACME across CDNs and so relates to the work of the ACME WG. The draft was reviewed by Thomas Fossati, one of the co-authors of RFC8739 and RFC9115, prior to WGLC and all his comments were addressed. The draft is clear of any nits. The draft does not create any new IANA registries but does register a new CDNI payload type. I am one of the designated experts for the registry and I have reviewed the draft, json object definition, and registration. The draft has gone through many rounds of review and I feel that the document is ready for the AD. The draft is being submitted as a proposed standard as it extends the capabilities of proposed standard RFC8006. The authors have confirmed that there is no undisclosed IPR to their knowledge. The normative references are all freely available and normative. There are no downrefs or unpublished RFC references. Publication of this draft does not change the status of any other RFCs. |
2023-09-02
|
03 | Kevin Ma | Responsible AD changed to Francesca Palombini |
2023-09-02
|
03 | Kevin Ma | IETF WG state changed to Submitted to IESG for Publication from WG Consensus: Waiting for Write-Up |
2023-09-02
|
03 | Kevin Ma | IESG state changed to Publication Requested from I-D Exists |
2023-09-02
|
03 | Kevin Ma | Document is now in IESG state Publication Requested |
2023-09-02
|
03 | Kevin Ma | Document Shepherd: Kevin J. Ma Responsible AD: Francesca Palombini This draft defines/registers a CDNI Metadata object to enable credential delegation between an upstream and a … Document Shepherd: Kevin J. Ma Responsible AD: Francesca Palombini This draft defines/registers a CDNI Metadata object to enable credential delegation between an upstream and a downstream CDN. The CDNI Metadata Interface (RFC8006) was designed to be extensible and defines a registry for new metadata objects to which the ACMEDelegationMethod object is being added. The draft has been around for over six years. There was broad consensus that CDNI should support credential delegation once credential delegation protocols were defined by other working groups. CDNI is not chartered to define credential delegation protocols, therefore it was determined that the draft would wait for completion of the ACME STAR and/or TLS subcerts drafts in their respective working groups. As ACME STAR neared completion, the draft was split into two drafts, one for ACME STAR and the other for TLS subcerts. There were no major controversies or discontent. Discussions were primarily around scope, specifically, minimizing the contents of the draft to only what is needed for CDNI to support delegation and avoiding any implementation of security protocols. CDNI supports configuration and capability negotiation between CDNs; it does not implement security protocols. The draft specifically provides for configuring ACME across CDNs and so relates to the work of the ACME WG. The draft was reviewed by Thomas Fossati, one of the co-authors of RFC8739 and RFC9115, prior to WGLC and all his comments were addressed. The draft is clear of any nits. The draft does not create any new IANA registries but does register a new CDNI payload type. I am one of the designated experts for the registry and I have reviewed the draft, json object definition, and registration. The draft has gone through many rounds of review and I feel that the document is ready for the AD. The draft is being submitted as a proposed standard as it extends the capabilities of proposed standard RFC8006. The authors have confirmed that there is no undisclosed IPR to their knowledge. The normative references are all freely available and normative. There are no downrefs or unpublished RFC references. Publication of this draft does not change the status of any other RFCs. |
2023-08-24
|
03 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-03.txt |
2023-08-24
|
03 | Sanjay Mishra | New version approved |
2023-08-24
|
03 | (System) | Request for posting confirmation emailed to previous authors: Frederic Fieau , Sanjay Mishra , Stephan Emile |
2023-08-24
|
03 | Frédéric Fieau | Uploaded new revision |
2023-07-13
|
02 | Kevin Ma | IETF WG state changed to WG Consensus: Waiting for Write-Up from In WG Last Call |
2023-05-24
|
02 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-02.txt |
2023-05-24
|
02 | (System) | New version approved |
2023-05-24
|
02 | (System) | Request for posting confirmation emailed to previous authors: Frederic Fieau , Sanjay Mishra , Stephan Emile |
2023-05-24
|
02 | Frédéric Fieau | Uploaded new revision |
2023-03-14
|
01 | Kevin Ma | Changed consensus to Yes from Unknown |
2023-03-14
|
01 | Kevin Ma | Intended Status changed to Proposed Standard from None |
2023-03-14
|
01 | Kevin Ma | IETF WG state changed to In WG Last Call from WG Document |
2023-03-06
|
01 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-01.txt |
2023-03-06
|
01 | Sanjay Mishra | New version approved |
2023-03-06
|
01 | (System) | Request for posting confirmation emailed to previous authors: Frederic Fieau , Sanjay Mishra , Stephan Emile |
2023-03-06
|
01 | Frédéric Fieau | Uploaded new revision |
2023-01-20
|
00 | Kevin Ma | Notification list changed to kevin.j.ma.ietf@gmail.com because the document shepherd was set |
2023-01-20
|
00 | Kevin Ma | Document shepherd changed to Kevin J. Ma |
2023-01-20
|
00 | Kevin Ma | This document now replaces draft-ietf-cdni-interfaces-https-delegation instead of None |
2023-01-20
|
00 | Frédéric Fieau | New version available: draft-ietf-cdni-delegation-acme-00.txt |
2023-01-20
|
00 | Kevin Ma | WG -00 approved |
2023-01-20
|
00 | Frédéric Fieau | Set submitter to "Frédéric Fieau", replaces to (none) and sent approval email to group chairs: cdni-chairs@ietf.org |
2023-01-20
|
00 | Frédéric Fieau | Uploaded new revision |