One purpose additional to the already mentioned selection of the "right" client certificate may be to truncate the sent client certificate path at such a CA certificate, though that certificate is already available at the server. If x509 is used at all for IoT, such a truncation may reduce the amount of data, but the list of CAs must be rather small to benefit from that effect.
best regards Achim Am 12.04.23 um 22:41 schrieb Salz, Rich:
Is this generally used? Would things go badly if we stopped sending them? _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
