Use of Name Redaction for Mass Devices
draft-ito-yet-another-name-redaction-01
Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Authors | Tadahiko Ito , Robert Ramirez | ||
Last updated | 2018-09-03 (Latest revision 2018-03-02) | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Expired | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document describes mechanisms to allow CT log submitters not to submit plain certificates. While public Certificate Transparency (CT) logs allow anyone to observe server certificates and make confident to trust Certificate Authorities (CAs), there are some problems scaling to mass devices. This document describes and presents some use cases for a mechanism that retains most of the security benefits gained from using Certificate Transparency.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)