Search RFCs
RFC 8555
Automatic Certificate Management Environment (ACME),March 2019
- File formats:
- Status:
- PROPOSED STANDARD
- Authors:
- R. Barnes
J. Hoffman-Andrews
D. McCarney
J. Kasten - Stream:
- IETF
- Source:
- acme (sec)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC8555
Discuss this RFC: Send questions or comments to the mailing listacme@ietf.org
Other actions:View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 8555
Abstract
Public Key Infrastructure using X.509 (PKIX) certificates are usedfor a number of purposes, the most significant of which is theauthentication of domain names. Thus, certification authorities(CAs) in the Web PKI are trusted to verify that an applicant for acertificate legitimately represents the domain name(s) in thecertificate. As of this writing, this verification is done through acollection of ad hoc mechanisms. This document describes a protocolthat a CA and an applicant can use to automate the process ofverification and certificate issuance. The protocol also providesfacilities for other certificate management functions, such ascertificate revocation.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.