On 24.10.23 14:56, josh.howl...@gmail.com wrote:
To be clear, what I mean is whether there is another IETF protocol that *mandates* the use of WebPKI?
I don't know of any, I'm interested in the definitive answer too.It definitely has a lot of implications to depend on external parties for security-relevant portions of the protocol.
The sentiment for the protocol design was "we have to use WebPKI anyway for the registration and there is no other good option", but to actually publish an RFC with that dependency, the implications should be discussed.
Cheers, Janfred -- Herr Jan-Frederik Rieckers Security, Trust & Identity Services E-Mail: rieck...@dfn.de | Fon: +49 30884299-339 | Fax: +49 30884299-370 Pronomen: er/sein | Pronouns: he/him __________________________________________________________________________________DFN - Deutsches Forschungsnetz | German National Research and Education Network
Verein zur Förderung eines Deutschen Forschungsnetzes e.V. Alexanderplatz 1 | 10178 Berlin www.dfn.deVorstand: Prof. Dr. Odej Kao (Vorsitzender) | Dr. Rainer Bockholt | Christian Zens
Geschäftsführung: Dr. Christian Grimm | Jochem Pattloch VR AG Charlottenburg 7729B | USt.-ID. DE 1366/23822
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
