Identifier Validation Challenges

tlussnig · November 11, 2015, 6:27am

Hi,

we are short before go life and the protocol documentation is still draft status.
And for example it does not contain information how “http-01” or “tls-sni-01” works.
So from my point we this is an issue if we should trust an open protocol that uses
undocumented features.

kelunik · November 11, 2015, 11:24am

They are documented.

tlussnig · November 11, 2015, 11:33am

Official Documentation found via

https://letsencrypt.org/howitworks/technology/
– https://github.com/letsencrypt/acme-spec
— https://letsencrypt.github.io/acme-spec/
Your Dokumentation is another project on github and i know from the beginning that
there are differences between these two documentations.
https://github.com/ietf-wg-acme/acme/blob/master/draft-ietf-acme-acme.md#http

kelunik · November 11, 2015, 11:41am

letsencrypt/acme-spec is LE’s current draft while the other one is the one of IETF for standardizing it.

Topic		Replies	Views
Tls-sni-01 or tls-sni-02 to support now?	6	4774	April 20, 2017
Where I can read used protocol description? Issuance Tech	2	1414	May 26, 2016
2018.01.11 Update Regarding ACME TLS-SNI and Shared Hosting Infrastructure Incidents	3	72669	January 13, 2018
Turning off old/insecure challenge types Client dev	12	8665	November 20, 2015
News! acme.sh now supports tls-sni-01 validation!	1	2971	June 19, 2016

Identifier Validation Challenges

Related topics