Michael Richardson <mcr+i...@sandelman.ca> wrote:
>> * The subjectAltName extension MAY be present in both DevID
>> certificates and DevID intermediate certificates. If a DevID
>> certificate includes a subjectAltName, that field should include a
>> HardwareModuleName. When a TPM is used to provide DevID module
>> functionality the IDevID certificate contains a subjectAltName that
>> uses a HardwareModuleName to identify the TPM, the hwType identifying
>> the TPM Version and the hwSerialNum containing the TPM Serial Number.
> This turns out to be a complete distraction.
> We had text about this in early BRSKI drafts, but the thing is that this
is
> about identifying the TPM device itself, which is really not the IDevID.
> I'd have to look back in five year old emails to explain what it really
was
> about, but the short of it is that you should just pretend you never read
> this part, as it really does help you.
It really does *NOT* help anyone.
--
Michael Richardson <mcr+i...@sandelman.ca> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace
