[META] Extending Web PKI for local network devices

This is a meta issue to collect and discuss ideas and proposals that would extend the current Web PKI model. Examples are:

- [TLS certificate issuance integrated with DNS-SD](https://www.w3.org/wiki/images/6/6c/TPAC2016_Local_Discovery_and_HTTPS.pdf)
- [TLS certificate issuance with out-of-band attestation challenge](https://www.w3.org/wiki/images/e/e9/TPAC2017_httpslocal-2.pdf) (see [Approach #3](https://github.com/dajiaji/proposals/blob/abstract_proposal/draft_proposal_supporting_local_https_communication.md#53-approach-3) in #2)

As you may know, Web PKI assumes that server certificates can be validated based on globally unique server names. In other words, locally unique device names might not be compatible with Web PKI. This meta issue is to explore possible extension or modification of Web PKI for local network devices.

Any comments or additional proposals are welcome!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[META] Extending Web PKI for local network devices #5

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[META] Extending Web PKI for local network devices #5

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions