* You say this as if it's a new thing :-) * Is it the "change" that certificates obtained for code signing or email use * will have the tls-kp-clientAuth EKU ommitted?
Chrome has decided that they will not trust any WebPKI CA that also issues any certificates with tls-kp-clientAuth. That is new.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
