Hi Michael,
>> So, please: Is it about direct EUI64 support in x509? Or about omit
>> EUI64 in device certificates?
>
> This is about what SNI supports vs what X509 supports.
Thanks for the clarification.
br
Achim
___
Uta mailing list -- uta@ietf.or
> The problem is that, having done this, can we use the result in SNI?
> The answer is mostly no. That's why there was some push to do something SNI
> compatible, which means it has to look like a dNSName.
And pedantically the answer is it looks like an unqualified DNS name, which is
not what the
Achim Kraus wrote:
> I may fail to understandiung your question or intention. Maybe you
> clarify it.
> Your initial question in "draft-tls13-iot" was:
> "I was looking for a SN, or SAN that would encode EUI64, and I feel
> surprised not to find one."
> But, if you lik
Hi Michael,
> TL;DR> Help us avoid stuffing non-DNS strings into
>SubjectAltName dNSName when doing device to device (D)TLS.
I may fail to understandiung your question or intention.
Maybe you clarify it.
Your initial question in "draft-tls13-iot" was:
"I was looking for a SN, or SAN th
