On Mon, Mar 12, 2018 at 16:01:24 +0100, Philipp Junghannß wrote: > But isn't the point of this proposal that the client CANNOT be expected > knowing the root like with DANE/TLSA'd servers with a custom root or > whatever?
I must admit that I'm not very familiar with DANE. What would be a typical use case where you use ACME but you don't already know the root cert?
signature.asc
Description: PGP signature
_______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
