On 10/22/2015 09:24 AM, Viktor Dukhovni wrote: > >> Why would it make sense to prohibit the sending of PKIX trust anchor >> certificates that have sha1WithRSAEncryption signatures? > It makes no sense to restrict the signatures of trust-anchors. It > makes little sense to restrict the signatures certificates servers > can send to clients to be evaluated per the client's policy. >
% a certificate that specifies a trust anchor MAY be omitted from the chain The client cannot decide that the signature on the root cert the server sent is bad, if the server does not send the root cert. -Ben _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
