On 22 October 2015 at 09:19, Benjamin Kaduk <bka...@akamai.com> wrote: > > % a certificate that specifies a trust anchor MAY be omitted from the chain > > The client cannot decide that the signature on the root cert the server > sent is bad, if the server does not send the root cert.
Yes, that was my thinking. I expect that if a certificate is sent, then it might have to be checked. As opposed to the roots, which are rarely sent or checked. Maybe it would help if Victor could describe the situation in which he thinks that it would be appropriate to send a certificate that is signed by MD5. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
