[cabf_validation] FW: ACME DV Security Considerations Draft

Tim Hollebeek tim.hollebeek at digicert.com
Wed Oct 24 08:52:51 MST 2018

Internet draft on attacks on DV validation.


-----Original Message-----
From: Acme <acme-bounces at ietf.org> On Behalf Of Tobias Fiebig
Sent: Sunday, October 21, 2018 5:37 AM
To: acme at ietf.org
Cc: kevin at iseclab.org
Subject: [Acme] ACME DV Security Considerations Draft

Dear all,
At the IETF in Montreal, I presented findings on security issues with domain
validation in ACME, and were encouraged to write a short draft outlining
attacks and possible defenses. We now created a first draft, which outlines
the general structure and contents we are aiming for, see
https://datatracker.ietf.org/doc/draft-fiebig-acme-esecacme. We are looking
forward to your input on our plans. 

Met vriendelijke groet,
Dr.-Ing. Tobias Fiebig,
Assistant Professor / Universitair Docent Department Engineering Systems and

Informatie- en Communicatie Technologie (ICT)
TU Delft / Dept. ESS
Faculty of Technology, Policy and Management (TBM) Building 31 Jaffalaan 5 -
room B3.170
2628 BX  Delft
P.O.Box 5015
2600 GA Delft, The Netherlands
T +31 (0)15 27 85700
E  t.fiebig at tudelft.nl

Present: Monday t/m Friday

Acme mailing list
Acme at ietf.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4940 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/validation/attachments/20181024/2aac97a9/attachment.p7s>

More information about the Validation mailing list