Det finns en ny Internet Draft, Representation and Verification of Application Server Identity in Certificates Used with Transport Layer Security (TLS) som ser intressant ut, men där författarna behöver/vill ha hjälp. Draftens sammanfattning ger en bra beskrivning av vad man vill åstadkomma:
Many application technologies enable a secure connection between two entities using certificates in the context of Transport Layer Security (TLS).This document specifies procedures for representing and verifying the identity of application servers in such interactions.
Eftersom draften spänner över flera olika områden har författarna haft svårt att hitta rätt forum. I en postning skriver dom:
A small, informal design team has been working on an I-D that attempts to define recommended procedures for representing and verifying server identities in X.509 certificates intended for use in applications that employ TLS.
...Because this work touches on security in a wide variety of application protocols (HTTP, IMAP, LDAP, SMTP, XMPP, NNTP, NETCONF, SysLog, SIP, etc.) through the re-use of both TLS and the PKI, there is no one list where we can hold a focused discussion. Therefore we have created a new list, certid@ietf.org, to which you can subscribe here:
https://www.ietf.org/mailman/listinfo/certid
Please join the discussion there if you have an interest in this topic.
Thanks!
Peter Saint-Andre
Verkar detta intressant så häng på!
No related posts.
Related posts brought to you by Yet Another Related Posts Plugin.
