Hi Carl,
I agree to both your points in principle, but see Rich's mail.
Thanks,
Yaron
On 20/07/16 17:46, Carl Wallace wrote:
On 7/20/16, 11:32 AM, "Yaron Sheffer" <[email protected]> wrote:
Hi Carl,
I think this could work, but I believe there are use cases
(specifically, CDNs) where people do not want to advertise the delegation.
I favor solutions where the relying party can be aware of the delegation
if they want to be.
Besides, I am personally averse to tweaking X.509. IMO it could make
standardization much more difficult.
Maybe to the certificate issuance process, but for general use existing
clients should just work out of the box.
Thanks,
Yaron
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
