It looks like we have good consensus on PR 169 to relax certificate list ordering requirements. I had one question on the revised text. I'm unclear on the final clause in this section:
"Because certificate validation requires that trust anchors be distributed independently, a self-signed certificate that specifies a trust anchor MAY be omitted from the chain, provided that supported peers are known to possess any omitted certificates they may require." I just want to make sure there isn't the intention of omitting certificates that are not seif-signed. Thanks, Joe
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
