Blumenthal, Uri - 0553 - MITLL <u...@ll.mit.edu> writes: >Always enforce peer certificate key usage (separation) for ECDSA. ECDSA keys >are more brittle when misused.
Since ECDSA can only do signing, isn't this a bit redundant? In other words you can't really not enforce keyUsage for a signature-only algorithm. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
