ACME Challenges using an Authority Token
iconectiv
A number of proposed challenges for the Automated Certificate Management Environment (ACME) effectively rely on an external authority issuing a token according to a particular policy. This document specifies a generic Authority Token challenge for ACME which admits of subtypes for different identifiers or namespaces. This document specifies a generic Authority Token challenge for ACME which consists of subtype for different identifiers or namespace. The Authority Token is issued by an Authority with whom the Certification Authority (CA) has a trust relationship. The entity requesting a certificate also has a relationship with the Authority, such that the authority assigns a unique code to the entity. This entity code is included as part of the token that the administrative authority issues.