]> independent

demarcog83@gmail.com

bran@bran.land

Security Automated Certificate Management Environment OpenID Federation ACME The Automatic Certificate Management Environment (ACME) protocol allows server operators to obtain TLS certificates for their websites, based on a demonstration of control over the website's domain via a fully-automated challenge/response protocol. OpenID Federation 1.0 defines how to build a trust infrastructure using a trusted third-party model. It uses a trust evaluation mechanism to attest to the possession of private keys, protocol specific metadata and miscellaneous administrative and technical information related to a specific entity. This document defines how X.509 certificates associated with a given OpenID Federation Entity can be issued by an X.509 Certification Authority through the ACME protocol to the organizations which are part of a federation built on top of OpenID Federation 1.0. About This Document Status information for this document may be found at . Discussion of this document takes place on the Automated Certificate Management Environment Working Group mailing list (), which is archived at . Subscribe at . Source for this draft and an issue tracker can be found at .

Introduction This document describes extensions to the ACME protocol that integrate with OpenID Federation 1.0, allowing an ACME server to issue X.509 Certificates associated with a given OpenID Federation entity. An entity can be a school, government agency, corporation, automated system, or any participant that wishes to join the Federation. In a multilateral federation, composed of thousands of entities belonging to different organizations, all the participants adhere to the same regulation or trust framework. OpenID Federation 1.0 allows each participant to recognize other participants using a trust evaluation mechanism, with RESTful services and cryptographic materials. Federation members declare what kind Entities they are using a basic OpenID Federation component called an Entity Configuration, a signed JSON Web Token published in a well-known resource. This document defines new OpenID Federation Entity Types for certificate Requestors and Issuers, facilitating automated discovery of an issuer's ACME API. X.509 Certificates can be provided to one or more such entities, without having pre-established any direct relationship or contract. These Certificates are useful for integrating with existing systems and protocols which require X.509 Certificates. For example, RADIUS () deployments often require Certificates to authenticate clients, or these Certificates could also be used for TLS . In order to accommodate a variety of use cases, this document adds no requirement that CAs conform to any particular issuance profile, because fields of the X.509 Certificates like the Common Names, Subject Alternative Names or Key Usages may depend on details of those existing systems. This document extends , ACME () and OpenID Federation 1.0 () in the following ways:

• It defines a new ACME Identifier type called openid-federation ().
• It defines a new ACME challenge type called openid-federation-01 ().
• It defines new OpenID Federation 1.0 Entity Types acme_issuer () and acme_requestor ().
• It defines how OpenID Federation 1.0 Superior Entities can use Subordinate Statements to publish X.509 Certificates previously issued with ACME ().
• It defines a new SubjectAlternativeName type id-on-OpenIdFederationEntityId and a corresponding OID so that OpenID Federation 1.0 Entity Identifiers can be included in X.509 Certificates if an Issuer wishes ().

Terminology The terms "Federation Entity", "Trust Anchor", "Entity Configuration", "Subordinate Statement", "Superior Entity", "Immediate Superior Entity", "Federation Entity Keys", "Federation Entity Discovery", "Trust Mark", "Trust Chain", and "Resolved Metadata" used in this document are defined in . The term "Certificate Signing Request" (CSR) used in this document is defined as a "Certification Request" in . The term "Certification Authority" used in this document is defined in . The terms "ACME Client" and "ACME Server" are defined in . The specification also defines the following terms:

ACME Identifier:

An identifier in the sense of . Some identifier that the ACME client proves control of to the ACME server.

Entity Identifier:

A URL that uniquely identifies an Entity in OpenID Federation, as defined in .

Requestor:

A Federation Entity which wants to request X.509 Certificates. It operates a web server for hosting its Entity Configuration. It also operates an ACME client, extended according to this document.

Certificate Issuer (or Issuer):

A Federation Entity which issues X.509 Certificates. It operates a web server for hosting its Entity Configuration. It also operates an ACME server, extended according to this document.

Conventions and Definitions The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in BCP 14 when, and only when, they appear in all capitals, as shown here.

OpenID Federation ACME Identifier This document defines a new ACME Identifier type for OpenID Federation Entities, openid-federation, whose value is the sub parameter of the Requestor's Entity Configuration, as defined in . For example, the ACME Identifier corresponding to the example Entity Configuration in is: The openid-federation ACME Identifier type MUST NOT be validated except by the openid-federation-01 challenge.

OpenID Federation Challenge Type The OpenID Federation challenge type allows a Requestor to prove control of a Federation Entity using the trust evaluation mechanism provided by . The Requestor demonstrates control of a cryptographic public key published in its OpenID Federation Entity Configuration. There are two ways the Certificate Issuer is able to check if a Requestor is part of the federation:

• The Requestor provides a Trust Chain when solving the ACME challenge. This is RECOMMENDED since it reduces the effort of the Certificate Issuer in evaluating the trust to the Requestor.
• The Requestor doesn't provide a Trust Chain in the challenge solution.

The openid-federation-01 ACME challenge object has the following format: type (required, string): The string "openid-federation-01" token (required, string): A random value that uniquely identifies the challenge. This value MUST have at least 128 bits of entropy. It MUST NOT contain any characters outside the base64url alphabet as described in . Trailing '=' padding characters MUST be stripped. See for additional information on randomness requirements. trustAnchors (optional, array of string): An array of strings containing the Entity Identifiers of the Issuer's Trust Anchors. When solving the challenge, the Requestor can construct a Trust Chain from itself to one of these Trust Anchors. It is RECOMMENDED that the Issuer includes this field to make it easier for the Requestor to construct a Trust Chain. A non-normative example of a challenge with trustAnchors specified: The openid-federation-01 challenge MUST NOT be used to validate possession of any ACME Identifiers except openid-federation ACME Identifiers. The Requestor responds to the challenge with an object with the following format: sig (required, string): the compact JSON serialization (as described in ) of a JWS, signing the key authorization encoded in UTF-8. The key authorization is computed from the token in the challenge and the Requestor's ACME account key, as defined in . The signature must be made by one of the keys published in the Requestor's acme_requestor metadata in its Entity Configuration, as specified in . The JWS MUST include a kid header parameter corresponding to the key used to sign the key authorization and a typ header parameter set to "signed-acme-challenge+jwt". trustChain (optional, array of string): an array of strings containing signed JWTs, representing a Trust Chain from the Requestor to one of the Issuer's Trust Anchors (see ). The Resolved Metadata of the Trust Chain subject MUST contain acme_requestor metadata that contains the key used to compute sig. It is RECOMMENDED that the Requestor includes this field. If the Requestor cannot construct a Trust Chain to one of the Trust Anchors indicated by the Issuer, or if no Trust Anchors were indicated, it MAY use some other Trust Anchor that it believes the Issuer trusts. If the Requestor cannot construct a Trust Chain to any Trust Anchor, it MAY omit the trustChain field from the challenge response. A non-normative example for an authorization with trustChain specified: On receiving a challenge response, the Certificate Issuer verifies that the Requestor is trusted. If the Requestor did not provide a trustChain, the Issuer MUST perform Federation Entity Discovery () to obtain a Trust Chain for the Requestor. Once it has obtained a Trust Chain, the Issuer evaluates the entity's Resolved Metadata, and verifies:

• That the requested openid-federation ACME Identifier value matches the sub parameter of the Requestor's Entity Configuration.
• That there is a key in the acme_requestor metadata () of the Requestor's Resolved Metadata with a kid matching the kid claim in the challenge response.
• That the sig field of the payload is the compact JSON serialization of a valid JWS signing the key authorization, using the above public key.

If all of the above checks succeed, then the validation is successful. Otherwise, it has failed. In either case, the Certificate Issuer responds according to . If the Issuer fails to verify OpenID Federation trust, the problem document SHOULD contain a subproblem of type urn:ietf:params:acme:error:openIDFederationEntity constructed as discussed in . A non-normative example for the challenge object post-validation:

Requestor Entity Configuration Metadata The Requestor MUST publish in its Entity Configuration an acme_requestor metadata containing a JWK set, according to . The keys in the set are used to respond to ACME challenges. The following is a non-normative example of an Entity Configuration including the acme_requestor metadata and using the jwks metadata parameter. The Issuer MUST only use the Requestor's acme_requestor to validate an ACME challenge. Therefore, after completing the challenge, the Requestor MAY remove the acme_requestor metadata from its Entity Configuration.

Issuer Discovery The Requestor's ACME client may either be configured to use a particular ACME server, or to automatically discover a Certificate Issuer through the OpenID Federation. In order to be discoverable, the Issuer MUST publish the entity type acme_issuer in its Entity Configuration, according to . describes a variety of patterns and generic mechanisms for discovering Federation Entities. This section describes how Issuers may make themselves discoverable in a Federation by Requestors. TODO: include a specific section reference once https://github.com/openid/federation/pull/265 lands in OPENID-FED

Issuer Metadata The Issuer MUST publish its Entity Configuration including the acme_issuer Entity Type metadata within it. The acme_issuer metadata contains one parameter, directory_url, which is the URL of the ACME Directory, as defined in . Requestors MUST use the ACME Directory provided in the Issuer's Entity Configuration for client configuration of ACME endpoints. The following is a non-normative example of an Entity Configuration including the acme_issuer metadata:

Publication of the Certificates within the Federation The X.509 Certificates issued by federation Immediate Superior Entities pertaining to one or more Federation Entity Keys in control of their Subordinates MAY publish this information by including the x5c member in each JWK contained within the matching Subordinate Statement. The contents of the published x5c member, including whether it contains a full or partial Trust Chain, and if so, to what Trust Anchor, are policy decisions out of scope for this document.

CSR and Certificate Fields Depending on the Certificate Issuer's X.509 Certificate profile, the CSR and X.509 Certificate MAY associate the X.509 Certificate to the Federation Entity by including the Entity Identifier in the X.509 Certificate. To do so, the Issuer includes a Subject Alternative Name extension containing an otherName with a type-id of id-on-OpenIdFederationEntityId. The value of the name is an Octet String containing the UTF-8 encoding of the Entity Identifier (i.e., the URI in the corresponding openid-federation ACME Identifier from the newOrder request).

Certificate Lifecycle The identity of the Requestor is verified through proof of possession of a private key corresponding to a public key attested within a Trust Chain. The Trust Chain has an expiration time, and its content MUST NOT be trusted past the expiration time (). The notBefore and notAfter fields of issued certificates MUST represent dates before the Trust Chain's expiration time. If the Requestor's newOrder request () contains notAfter or notBefore fields that make this impossible, the Certificate Issuer MUST reply with an error of type urn:ietf:params:acme:error:openIDFederationCertificateValidity.

Errors This document defines two new error type URIs to be used in problem documents , as described in . The error type urn:ietf:params:acme:error:openIDFederationEntity is used to encapsulate any OAuth error code returned while resolving OpenID Federation Entities. The title of this error type is "OpenID Federation Error". The detail member of the problem document MAY include the description of the particular OAuth error code that caused the error. The problem document for this error type SHOULD include an extension member named error_code, which MUST be set to the OAuth error code, taken from the error codes defined in . The error type urn:ietf:params:acme:error:openIDFederationCertificateValidity is used to indicate that a Certificate could not be issued because of a mismatch between the requested period of validity and the expiration of the OpenID Federation Trust Chain.

Security Considerations The openid-federation-01 challenge defined in defends against replay attacks by malicious ACME servers because the signature in challenge responses is over an ACME key authorization, which binds the ACME account key. The cryptographic keys in the acme_requestor metadata SHOULD NOT be reused for other purposes than signing responses to acme-federation-01 challenges. For example, the same keys SHOULD NOT be reused in the issued X.509 Certificate. If the keys are reused for other purposes, cross-protocol attacks MUST be considered. The cryptographic keys in the acme_requestor metadata SHOULD be rotated periodically.

IANA Considerations IANA is kindly asked to make the following updates to registries:

ACME Registry Group The following updates are all assignments in the "Automated Certificate Management Environment (ACME) Protocol" registry group .

ACME Identifier Types IANA is asked to add to the "ACME Identifier Types" registry, defined in , the entry below, as specified here in :

Label	Reference
openid-federation	this document

ACME Validation Methods IANA is also asked to add to the "ACME Validation Methods" registry, defined in , the entry below, as specified here in :

Label	Identifier Type	Reference
openid-federation-01	openid-federation	this document

ACME Error Types IANA is also asked to add to the "ACME Error Types" registry, defined in , the entry below, as specified here in :

Type	Description	Reference
openIDFederationEntity	An error occurred while resolving an OpenID Federation entity	this document
openIDFederationCertificateValidity	A certificate was requested whose validity period is not before the OpenID Federation Trust Chain's expiry	this document

Assign X.509 PKIX Other Name IANA is asked to add to the "PKIX Other Name Forms" registry (1.3.6.1.5.5.7.8) the entry below, as specified here in

Decimal	Description	Reference
TBA	id-on-OpenIdFederationEntityId	this document

References Normative References IANA n.d. IANA n.d. This memo profiles the X.509 v3 certificate and X.509 v2 certificate revocation list (CRL) for use in the Internet. An overview of this approach and model is provided as an introduction. The X.509 v3 certificate format is described in detail, with additional information regarding the format and semantics of Internet name forms. Standard certificate extensions are described and two Internet-specific extensions are defined. A set of required certificate extensions is specified. The X.509 v2 CRL format is described in detail along with standard and Internet-specific extensions. An algorithm for X.509 certification path validation is described. An ASN.1 module and examples are provided in the appendices. [STANDARDS-TRACK] Public Key Infrastructure using X.509 (PKIX) certificates are used for a number of purposes, the most significant of which is the authentication of domain names. Thus, certification authorities (CAs) in the Web PKI are trusted to verify that an applicant for a certificate legitimately represents the domain name(s) in the certificate. As of this writing, this verification is done through a collection of ad hoc mechanisms. This document describes a protocol that a CA and an applicant can use to automate the process of verification and certificate issuance. The protocol also provides facilities for other certificate management functions, such as certificate revocation. This memo represents a republication of PKCS #10 v1.7 from RSA Laboratories' Public-Key Cryptography Standards (PKCS) series, and change control is retained within the PKCS process. The body of this document, except for the security considerations section, is taken directly from the PKCS #9 v2.0 or the PKCS #10 v1.7 document. This memo provides information for the Internet community. In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements. RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings. This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet characters in encoded data, use of different encoding alphabets, and canonical encodings. [STANDARDS-TRACK] Security systems are built on strong cryptographic algorithms that foil pattern analysis attempts. However, the security of these systems is dependent on generating secret quantities for passwords, cryptographic keys, and similar quantities. The use of pseudo-random processes to generate secret quantities can result in pseudo-security. A sophisticated attacker may find it easier to reproduce the environment that produced the secret quantities and to search the resulting small set of possibilities than to locate the quantities in the whole of the potential number space. Choosing random quantities to foil a resourceful and motivated adversary is surprisingly difficult. This document points out many pitfalls in using poor entropy sources or traditional pseudo-random number generation techniques for generating such quantities. It recommends the use of truly random hardware techniques and shows that the existing hardware on many systems can be used for this purpose. It provides suggestions to ameliorate the problem when a hardware solution is not available, and it gives examples of how large such quantities need to be for some applications. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements. JSON Web Signature (JWS) represents content secured with digital signatures or Message Authentication Codes (MACs) using JSON-based data structures. Cryptographic algorithms and identifiers for use with this specification are described in the separate JSON Web Algorithms (JWA) specification and an IANA registry defined by that specification. Related encryption capabilities are described in the separate JSON Web Encryption (JWE) specification. This document defines a "problem detail" to carry machine-readable details of errors in HTTP response content to avoid the need to define new error response formats for HTTP APIs. This document obsoletes RFC 7807. Informative References This document describes a protocol for carrying authentication, authorization, and configuration information between a Network Access Server which desires to authenticate its links and a shared Authentication Server. [STANDARDS-TRACK] This document specifies version 1.3 of the Transport Layer Security (TLS) protocol. TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery. This document updates RFCs 5705 and 6066, and obsoletes RFCs 5077, 5246, and 6961. This document also specifies new requirements for TLS 1.2 implementations.

End-to-end Issuance Flow ~~~ BEGIN EDNOTE ~~~ This appendix is to be removed before publication. This section contains explanatory material that recaps a lot of RFC 8555. It is included here for the benefit of readers who are familiar with OpenID Federation but not with ACME, and want to see at a glance how the whole thing fits together. The following diagram illustrates a successful interaction between Issuer and Requestor to retrieve an X.509 Certificate. The diagram assumes the Requestor has already discovered the Issuer, and the Requestor has already created an ACME account with the Issuer. This section is informational and non-normative. The remainder of this document, and should be considered correct should this appendix disagree with any of them. | | | | | | |Authorization at | | | |/acme/authz/[authz-id] | | | |Finalize at | | | | /acme/order/[order-id]/finalize | | | |<- - - - - - - - - - - - - - - - - | | | | | | | POST /acme/authz/[authz-id] | | | |---------------------------------> | | | | | | | openid-federation-01 Challenge | | | | at /acme/chall/[chall-id] | | | |<- - - - - - - - - - - - - - - - - | | | | | | ----. | | | | | Sign challenge token | | | | | with private key | | | <---' | | | | | | | | POST /acme/chall/[chall-id] | | | | with signed | | | | token and entity ID | | | | set to Requestor's ID | | | |---------------------------------> | | | | | | | Challenge validation | | | | beginning | | | |<- - - - - - - - - - - - - - - - - | | | | | | GET /.well-known/openid-federation | | |<---------------------------------------------------- | | | | | | Requestor's Entity Configuration | | | - - - - - - - - - - - - - - - - - - - - - - - - - > | | | | | | | ______________________________________________________ | | ! OPT / If Requestor didn't provide Trust Chain | ! | | !_____/ | | ! | | ! | Determine Trust Chain | ! | | ! | from Issuer's | ! | | ! | Trust Anchor to Requestor| ! | | ! | (Federation Discovery) | ! | | ! | <------------------------>| ! | | !~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~! | | | | | | |----. | | | | | Evaluate Trust Chain | | | |<---' | | | | | | | |----. | | | | | Check | | | | | Entity Configuration | | | | | sub matches | | | | | Entity Identifier | | | |<---' in the order | | | | | | | | | | | |----. | | | | | Check challenge | | | | | sig is signed | | | | | with key in | | | |<---' Entity Configuration | | | | | | _________________________________________________________________________ | | ! LOOP / Poll until authz status | ! | | ! / is "valid" or "invalid" | ! | | !_____/ | | ! | | ! | POST-as-GET | ! | | ! | /acme/authz/[authz-id] | ! | | ! |---------------------------------> ! | | ! | | ! | | ! | Current authz status | ! | | ! |<--------------------------------- ! | | !~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~! | | | | | | | | | | ___________________________________________________________________________ | | ! OPT / If the authz status is "valid" | ! | | !_____/ | | ! | | ! | POST | ! | | ! | /acme/orders/[order-id]/finalize| ! | | ! | with CSR | ! | | ! |---------------------------------> ! | | ! | | ! | | ! | |----. ! | | ! | | | Check CSR ! | | ! | | | validity ! | | ! | | | according to ! | | ! | | | protocol ! | | ! | |<---' and CA policy ! | | ! | | ! | | ! | | ! | | ! | Order object with certificate | ! | | ! | at /acme/cert/[cert-id] | ! | | ! |<- - - - - - - - - - - - - - - - - ! | | ! | | ! | | ! | POST /acme/cert/[cert-id] | ! | | ! |---------------------------------> ! | | ! | | ! | | ! | Newly issued X.509 Certificate | ! | | ! |<- - - - - - - - - - - - - - - - - ! | | !~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~! | ,--------+--------. ,-----+-----. ,-----------+------------. ,-----------+-----------. |Requestor's | |Requestor's| |X.509 Certificate Issuer| |Federation Trust Anchor| |OpenID Federation| |ACME Client| `------------------------' `-----------------------' | Web Server | `-----------' `-----------------' ]]> ~~~ END EDNOTE ~~~

Acknowledgments Aaron Gable and Mike Ounsworth, for early and thorough reviews of this draft.

Contributors ISRG

divergentdave@gmail.com

ISRG

inahga@letsencrypt.org

ISRG

ietf@insufficient.coffee

ISRG

timgeog+ietf@gmail.com