>I think this is better: "The rules specified here apply whenever service
identities are included in X.509 certificates, either directly or
indirectly through credentials derived from such a certificate."
Work for me!
___
Uta mailing list
Re: https://httpwg.org/specs/rfc9110.html#https.ip-id
6125-bis has always been solely about names, specifically fully-qualified
domain names. It has not been explicitly discussed, but I think the WG
understanding is as I just described it.
Looking at the section above, I don't see what 6125bis
On 6/29/22 7:16 AM, Salz, Rich wrote:
Re: https://httpwg.org/specs/rfc9110.html#https.ip-id
6125-bis has always been solely about names, specifically fully-qualified
domain names. It has not been explicitly discussed, but I think the WG
understanding is as I just described it.
Looking at the
On Thu, Jun 30, 2022, at 07:03, Peter Saint-Andre wrote:
> I think Martin is suggesting that we add the matching rule to 6125bis:
>
>A reference identity of type IP-ID matches if the address is
>identical to an iPAddress value of the subjectAltName extension of
>the certificate.
That's
