attachment
<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body style="overflow-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;"><span style="font-family: -webkit-standard; font-size: medium;">All,</span><div><br></div><div>This update adds discussion of default host names, secure network connection (802.1X/EAP-TLS), and manual certificate approvals. The changes take a step back from completely automatic certificate issuance and implied trust for IoT devices while retaining the completely-local management and automated renewal capabilities of a local ACME server and the scalability from small residential/home networks with just mDNS through large enterprise networks with a DNS server/domain.</div><div><br id="lineBreakAtBeginningOfMessage"><div><br><blockquote type="cite"></blockquote></div></div><div><br><blockquote type="cite"><div>Begin forwarded message:</div><br class="Apple-interchange-newline"><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(0, 0, 0, 1.0);"><b>From: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;">internet-drafts@ietf.org<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(0, 0, 0, 1.0);"><b>Subject: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;"><b>New Version Notification for draft-sweet-iot-acme-07.txt</b><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(0, 0, 0, 1.0);"><b>Date: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;">February 7, 2025 at 3:03:39 PM EST<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(0, 0, 0, 1.0);"><b>To: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;">"Michael Sweet" <msweet@msweet.org><br></span></div><br><div><div>A new version of Internet-Draft draft-sweet-iot-acme-07.txt has been<br>successfully submitted by Michael Sweet and posted to the<br>IETF repository.<br><br>Name: draft-sweet-iot-acme<br>Revision: 07<br>Title: ACME-Based Provisioning of IoT Devices<br>Date: 2025-02-07<br>Group: Individual Submission<br>Pages: 16<br>URL: https://www.ietf.org/archive/id/draft-sweet-iot-acme-07.txt<br>Status: https://datatracker.ietf.org/doc/draft-sweet-iot-acme/<br>HTML: https://www.ietf.org/archive/id/draft-sweet-iot-acme-07.html<br>HTMLized: https://datatracker.ietf.org/doc/html/draft-sweet-iot-acme<br>Diff: https://author-tools.ietf.org/iddiff?url2=draft-sweet-iot-acme-07<br><br>Abstract:<br><br> This document extends the Automatic Certificate Management<br> Environment (ACME) to provision X.509 certificates for local Internet<br> of Things (IoT) devices that are accepted by existing web browsers<br> and other software running on End User client devices.<br><br><br><br>The IETF Secretariat<br><br><br></div></div></blockquote></div><br><div>
<div dir="auto" style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none; word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;">________________________<br>Michael Sweet<br></div>
</div>
<br></body></html>