Hi Q,
Thanks for your pointing out the reference, I have read this section and found
that it (external account binding) is another thing about account authenticity
and performed in the ACME “Account Management” phase, different from what our
draft proposed about public key authenticity and perfo
Aaron Gable wrote:
> Hi Michael,
> On Wed, Nov 27, 2024, 15:59 Michael Richardson
> wrote:
>>
> I'm unclear from reading 8555 if this key is retained across orders
>> (like a renewal 60 days later), or if a new key is generated each time.
>> Is the newAccount key a
It is supposed to be. However there are clients that create a new account
for each certificate issuance attempt but they’re not following the spec.
The account is how things like rate limit increases, or binding an account
to an external service takes place.
On Thu, Nov 28, 2024 at 22:33 Michael
Hi Michael,
On Wed, Nov 27, 2024, 15:59 Michael Richardson
wrote:
>
I'm unclear from reading 8555 if this key is retained across orders
> (like a renewal 60 days later), or if a new key is generated each time.
> Is the newAccount key always the same key as the CSR key?
>
The account key is almo
