►
From YouTube: IETF108-ACME-20200730-1410
Description
ACME meeting session at IETF108
2020/07/30 1410
https://datatracker.ietf.org/meeting/108/proceedings/
A
A
A
We
also
had
new
versions
of
pretty
much
every
document
that
we
had
because,
of
course,
since
we
haven't
met,
met
for
eight
months,
then,
and
everything
that
wasn't
revised
is
already
expired
with
that
said,
there
are
also
some
related
draft
got
updated,
that's
acne,
subdomains,
acne,
onion,
dtn,
node
id
and,
in
fact,
they're
taking
quite
a
large
part
of
our
agenda.
This
time.
B
I'm
sorry
I
was
muted,
so
part
of
the
presentation
is
a
general
background
on
dtn
and
the
other
part
is
specific
to
acme.
So
we
can
move
on
to
the
next
slide.
Please,
for
those
not
familiar
the
concept
of
dtn
is
that
it
functions
as
an
overlay
network
on
top
of
some
transport
protocols,
and
this
is
similar
in
concept
to
the
operation
of
email
with
smtp.
B
There
are
other
options,
but
the
focus
for
this
acme
use
and
the
reason
is
as
we'll
discuss
on
the
next
slide,
the
tcp
convergence
layer.
So
we're
not
going
to
talk
about
how
bundles
move
around
the
network
just
know
that
they
move
from
hop
to
hop
between
bundle,
agents
and,
ultimately,
hopefully
end
up
at
their
destination.
B
Bundles
themselves
are,
and
a
bundle
starts
with
a
primary
block
that
has
addressing
information
and
some
metadata
about
the
bundle
and
then
has
a
series
of
canonical
blocks.
One
of
them
is
always
the
payload,
the
actual
thing
being
transported,
and
then
a
lot
of
them
are
dealing
with
processing
controls,
routing
controls,
security
services
and
things
like
that.
B
So
again,
we
don't
need
to
get
into
too
much
details
other
than
a
bundle
is
a
self-contained
unit
in
roughly
the
same
way
that
an
smtp
message
I'm
going
to
use
smtp
as
a
kind
of
a
touchstone
for
some
of
these
things,
because
the
concepts
are
are
similar,
so
smtp
individual
messages
hop
hop
through
the
network.
Looking
for
their
destinations
and
bundles
do
the
same.
B
So
we
already
know
how
to
do
dns,
name,
validation
in
rfc,
6125
and
also
we
already
know
how
to
do
validation
in
the
sense
of
a
certificate
issuer
validating
that
I
own
a
dns
name.
So
that's
all
worked
out
and
taken
care
of,
but
the
question
came
up
is
how
do
I,
how
do
I,
as
a
ca,
validate
someone's,
claim
to
a
dtn
name?
Well,
a
node
id,
and
so
a
little
bit
of
research
was
done
and
acme
pre-existing.
Infrastructure
already
has
a
well-established
way
to
do
all
of
the
bookkeeping.
B
B
B
B
So
the
concept
here
going
back
to
that
analogy
to
email,
the
concept
is,
is
very
similar
and
I
even
lifted
some
of
the
nomenclature
from
the
s
mime,
acme
validation
mechanism.
So
the
idea
here
is
that
the
the
bundle
protocol
has
two
different
top-level
types
of
bundles.
One
of
them
is
a
service
payload,
and
one
of
them
is
an
administrative
record.
B
B
So
that's
the
the
core
of
the
situation
and
there's
also
some
information
in
the
draft
that
talks
about
using
bundle
integrity
to
sign
the
individual
bundles.
This
isn't
strictly
necessary
in
the
sense
of
making
sure
that
a
claim
can
be
validated,
but
it
is
useful
to
be
able
to
make
sure
that
bundles
pass
through.
Maybe
if
we're
talking
about
the
this
is
because
we're
talking
about
acme,
it
really
is
targeting
a
an
internet
type
open
network.
So
we
don't
want
to
have
implicitly
trusted
bundles.
B
C
Hi
hi
brian,
I
had
a
quick
question.
I
I
don't
know
if
I
understood
what
you
were
kind
of
saying
exactly
so
is
the
thinking
that
you
would
have
the
dtn
overlay
and
then
the
acme
servers
that
the
dtn
nodes
are
trying
to
reach
or
on
the
public
internet
versus
an
acme
server,
that's
somewhere
in
the
in
the
dtn
fabric,
but
that's
more
of
a
closed
network.
B
The
the
rationale
for
using
acme
in
this
case
is
for
those
situations
where
the
certificate
authority
doesn't
have
that
back
channel
of
validating
things.
So
the
the
use
case
here
is
for
situations
where
there's
a
certificate
authority
that
is
issuing
certificates
to
you
can
think
of
them
as
gateway
nodes
that
operate
over
the
internet.
So
multiple
sites
have
gateway
nodes
and
these
sites
don't
have
necessarily
trust
channels
to
each
other.
B
A
A
D
B
D
Acme
server,
okay,
yeah
understood
because
I
know
we
have
iesg
discusses
on
the
the
tcp
convergence
layer
that
need
to
be
resolved
and
and
acme
is
a
good
way
to
resolve
that.
I
suppose
my
statement
to
the
chairs
is,
if
you
want
to
talk
to
the
dtn
chairs,
about
whether
we
keep
this
work
in
dtn
or
or
whether
you
want
to
generalize
it
and
adopt
it.
I'm
absolutely
open
to
having
that
conversation,
and
we
can
take
that
offline.
A
B
So
the
the
imp,
the
an
acme
server
that
would
implement
this
draft,
would
need
to
be
a
dtn
node
participating
in
a
dtn
network
and
have
have
yeah
all
of
the
things
in
the
same
way
as
an
acme
server.
Implementing
the
s.
Mime
draft
needs
to
be
a
trusted.
Smtp
server,
you
know
with
other
other
smtp
servers
using
it
as
a
an
s
mine,
I'm
not
familiar
with
the
exact
terminology,
but
it
needs
to
be
integrated
with
the
other
s.
Mime
servers
that
it's
trying
to
validate
domains
on.
C
A
Okay,
this
is
speaking
as
an
individual,
so
the
acme
servers
are
cas
and
the
cas
that
work
for
the
web.
The
public
web
have
usually
been
very
reluctant
to
provide
services
for
things
that
are
not
the
public
web.
You
know
it's
hard
to
even
get
smtp
certificates,
let
alone
user
certificates
or
and
pretty
much
nothing
for
any
other
use.
A
B
A
E
Yeah
we
have
the
the
tn
auth
tn
off
list
stuff,
which
is
unlikely
to
be
part,
hopefully
not
part
of
the
web
pki.
It
is
going
forward,
for
you
know
mobile
phones,
so
we
have.
We
definitely
have
precedent
within
the
working
group
and
you
know:
we've
expanded
the
charter
to
have
a
bunch
of
different
challenges.
E
D
B
A
C
A
A
A
A
F
A
F
A
A
H
So
in
principle
an
acme
server
could
issue
a
search
for
a
sub.domain.com
where
the
acme
client
has
only
to
fill
the
challenge
for
the
parent's
domain
and
an
acme
server
could
issue
search
for
a
large
number
of
subdum
inserts
and
only
require
a
single
charge
to
be
fulfilled
against
apparent
domains.
This
is
nothing
new
here.
This
hasn't
changed
since
it
of
106..
So
next.
H
H
H
H
So
what's
changed
since
106
and
draft
zero
one
and
there's
some
my
comments
that
I
and
there's
some
chatter
on
the
mirror
since
then
as
well-
and
those
three
comments
have
been
addressed.
First
is
what
this
drafter
2
defines.
Is
a
base
domain
boolean
field
in
the
authorization
object
to
explicitly
differentiate
between
an
authorization
for
a
apparent
domain
versus
an
authorization
for
a
wildcard.
H
The
draft
doesn't
really
state
anything
explicitly
about
ca
policy,
so
it
could
be
applicable
to
cas
that
confirmed
to
see
a
browser
forum
baseline
requirements,
but
it
doesn't
necessarily
have
to
be
used
by
those
servers.
It
could
be
used
by
different
cas
that
have
their
own
policies
or
could
in
fact
be
used
by
private
cas
or
iotcas.
H
H
E
E
G
E
A
H
H
So
what
this
does
it
just
describes.
What
this
informational
draft
does
just
describe
how
acme,
based
on
acme,
can
be
integrated
with
multiple
different,
existing
client
or
device
certain
mechanisms
without
requiring
any
changes
to
the
baseline
acne
specification
whatsoever.
It
just
outlines
some
informational
use
cases
where
acme
is
really
really
useful.
So
next
slide.
H
H
Ask
integration
our
acme
integration
with
a
brisket
cloud
registrar,
which
is
it's
risky
cloud
registrar?
Is
it's
a
it's
a
subset
of
brewski
that
what
the
cloud
register
defines
is
how
how
the
default
mode
of
risk
operation
when
it
comes
across
for
a
network
does
not
have
a
register
register
deployed
in
the
local
network.
A
device
can
fall
back
to
a
cloud
register
and
what
risky
cloud
register
does
is
fill
out
some
details
that
are
missing
from
the
baseline
risky
draft
and
finally
tip
tunnel
deep
tunneled
extent,
extensible,
authentication
protocol.
H
H
H
H
The
security
sections
secure
consideration
is
still
to
do,
but
this
will
be
as
this
is
informational
and
we're
not
making
any
changes
to
any
of
the
the
drafts
we're
referencing
it
all.
We
don't
expect
this
to
be
controversial
at
all
and
we're
certainly
making
no
changes
at
all
to
the
reference
security
consideration,
sections
in
est,
brewski
or
team.
H
H
So
we've
had
limited
reviewers
on
this.
Yet
but
again
it
is
just
information,
stitching
existing
specifications
together
and
not
changing
them
at
all,
and
so
what
we
would
like
is
if
anyone
on
the
list
is
willing
to
review
this
running
on.
The
list
is
willing
to
provide
feedback
on
this
draft
and
then
michael
and
rifa,
and
I
will
gladly
incorporate
that
feedback.
H
H
H
Yeah
we've
we
have
presented
this
at
emu
as
well,
and
they
we
presented
this
emu.
We
didn't
didn't
presented
this
time
around,
but
we
presented
our
eu
106
and
we
got
some
feedback
for
well.
Actually,
when
we
presented
redeem
is
one
of
the
reasons
why
mike
brickson
is
now
a
co-author,
because
he
was
very
interested
in
participating
best
in
singing
and
we've
had
some
feedback
from
elliot
lear
and
some
feedback
from
dan
harkins
out
of
emu
as
well.
On.
B
H
E
Okay,
that's
good,
so
it
sounds
like
you're.
Not.
I
don't
think
it's
ready
for
adoption
yet,
but
it
occurs
to
me
that
if
we
do
adopt
this
information,
would
I
think,
it'd
be
the
first
published
informational
document
and
that
we
would
make
a
point
of
reaching
out
to
the
others
working
groups
and
asking
them
to
review
it
too.
H
H
E
H
E
A
I
So
this
draft
was
mainly
instigated
by
the
fact
that
the
ca
browser
forum
has
recently
changed.
The
validation
rules
for
onion
addresses,
so
previously,
onion
addresses
were
only
allowed
in
ev
certificates,
which
meant
that
there
was
very
little
interest
to
have
any
kind
of
validation
mechanism
in
acme,
since
otherwise
ev
certificates
basically
impossible
to
do
via
acme.
Currently
so
now
that
they
can
be
included
in
domain
validated
certificates,
it
seems
like
there
is
some
interest,
speaking
as
a
representative
of
a
public
ca
to
issue
dv
certificates
containing
onion
addresses.
I
I
Ed
255
19
keep
public
keys,
so
the
the
mechanism
is
quite
simple:
you
you
create
a
csr
that
contains
a
nonce
provided
by
the
ca
announced
provided
by
the
non-provided
by
the
client,
and
you
sign
that
csr
using
the
the
private
key
and
then
the
ca
simply
verifies
the
csr
using
the
public
key
and
the
address,
and
the
document
has
has
left
out.
You
can
also
do
validation
simply
using
the
existing
change
tool
website
website.
I
I
I
think
that
there
are
two
kind
of
big
open
questions
with
the
the
document
as
it
is
written.
The
current
validation
mechanism
is
rather
complicated.
You
know
the
use
of
a
csr
is.
This
is
an
artifact
from
the
previous
version
of
onion
addresses
where
which
were
used
essentially
using
rsa,
1024
keys
and
and
truncated
sha-1
hashes.
I
So
the
the
validation
mechanism
was
kind
of
over
constructed
to
try
and
get
around
some
slightly
dodgy
security
properties
and
using
those
keys,
and
that,
as
was
discussed
on
the
list
previously,
it
turns
out
that
actually,
the
attempt
at
performing
hash
strengthening
actually
doesn't
work,
because
the
way
the
two
server
and
client
provided
nonsense
end
up
being
ordered
the
the
server
nonce
always
ends
up
being
the
prefix.
So
there
is
still
some
weakness
there.
I
But
it's
it's
not
strictly
necessary
in
order
to
get
a
validation
mechanism
that
is
cap
forum,
approved
and
then
the
other
question
is
right.
Do
we
want
to
specify
usage
with
http
01?
You
know,
I
think,
if
we
did
that
you
know
it
would
probably
warrant
some
discussion
of
a
security
consideration.
Section
of
you
know
how
closely
you
want
your
your
validation
stack
to
be
to
a
tall
stack,
but
right.
This
is
probably
more
of
a
policy
question
for
a
ca.
Then
it
is
something
we
can
strictly
specify.