tlswg, At IETF 106, Hannes Tschofenig suggested that there are use cases in which longer-lived delegated credentials are useful. The idea is to allows the 7-day default to be overridden in the presence of an application profile. This is similar to what is allowed in TLS for MTI cipher suites.
Here's the PR: https://github.com/tlswg/tls-subcerts/pull/45 Comments welcome, Nick
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
