>>> "ACME certificate management must provide automated methods for >>> revocation parallel to those use to request a certificate"? >> >> what the heck does "parallel" mean? does it include means to revoke a >> cert for which i have lost the private key and want to use an entirely >> different proof of ownership/control? > > To me it means if you prove control of a domain in order to request a > cert by methods 1, 2, or 3, then you can request revocation if you can > prove control by the same set of methods.
and what if i can prove control by method 42? > I do not think it means that you have to pick the same one from the > set, but it is something for the working group to discuss. which is one of the reasons russ's phrasing was so good; it left it for the wg to discuss and did not overly constrain the space. > Is there language you like better for that? yes, russ's randy, who has had his say _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
