[tor-talk] Letsencrypt and Tor Hidden Services
Anders Andersson
pipatron at gmail.com
Wed Aug 19 19:15:20 UTC 2015
On Wed, Aug 19, 2015 at 8:43 PM, Alec Muffett <alecm at fb.com> wrote:
>
> Hi, I'm Alec, and I am co-author of the Onion RFC draft with Jacob Appelbaum.
>
> Reports of the bogging-down have been greatly exaggerated, and I wish people would stop repeating them.
>
> The status of the Onion RFC draft is viewable at:
>
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-onion-tld/
>
> ...and this afternoon I created some amendments to the draft to address IETF and IANA concerns, and have circulated them amongst the team (me, Jake, Mark) to see if I've goofed.
>
> We will merge them, soon, in good time for the next review.
>
> In the most recent review IANA in particular were very helpful, offering to rewrite some of their stuff in order to make it abundantly clear to CA/B-Forum that:
>
> 1) onion will be a special case
> 2) onion should never be delegated
> 3) but nonetheless SSL certificates should be issued for it
>
> ...which proactively addresses a concern from a few months back re: whether CA/B-Forum would nitpick a "Special Use" designation.
>
> TL;DR - we are not past the finish line yet, and there is work to be done and challenge, but we're not down nor are we out.
> --
> Alec Muffett
> Security Infrastructure
> Facebook Engineering
> London
Just wanted to thank you for this work, I hope you succeed!
/ Anders
More information about the tor-talk
mailing list