263
edits
Changes
Jump to navigation
Jump to search
Line 19:
Line 19: − + Line 27:
Line 27: +
GC HTTPS Certificate Guidance (view source)
Revision as of 10:37, 11 April 2019
, 10:37, 11 April 2019→Automated Certificate Management Engine (ACME)
<br>
<br>
===Automated Certificate Management Engine (ACME)===
===Automated Certificate Management Engine (ACME)===
RFC 8555: Automatic Certificate Management Environment<br>
<u>RFC 8555: Automatic Certificate Management Environment</u><br>
Public Key Infrastructure using X.509 (PKIX) certificates are used for a number of purposes, the most significant of which is the authentication of domain names. Thus, certification authorities (CAs) in the Web PKI are trusted to verify that an applicant for a certificate legitimately represents the domain name(s) in the certificate. As of this writing, this verification is done through a collection of ad hoc mechanisms. This document describes a protocol that a CA and an applicant can use to automate the process of verification and certificate issuance. The protocol also provides facilities for other certificate management functions, such as certificate revocation.
Public Key Infrastructure using X.509 (PKIX) certificates are used for a number of purposes, the most significant of which is the authentication of domain names. Thus, certification authorities (CAs) in the Web PKI are trusted to verify that an applicant for a certificate legitimately represents the domain name(s) in the certificate. As of this writing, this verification is done through a collection of ad hoc mechanisms. This document describes a protocol that a CA and an applicant can use to automate the process of verification and certificate issuance. The protocol also provides facilities for other certificate management functions, such as certificate revocation.
<br><br>
<br><br>
<br>
<br>
===Wildcard Certificates===
===Wildcard Certificates===
It is recognized that wildcard certificates offer several advantages and they may be used where appropriate, however it should be recognized that wildcard certificates may introduce certain risks depending on how they are used.
It is recognized that wildcard certificates offer several advantages and they may be used where appropriate, however it should be recognized that wildcard certificates may introduce certain risks depending on how they are used.
