Hi all, I wanted to bring up another topic that may need to be clarified in draft-tschofenig-uta-tls13-profile-04
RFC 7925 says the following about client certificates: "4.4.2<https://tools.ietf.org/html/rfc7925#section-4.4.2>. Certificates Used by Clients For client certificates, the identifier used in the SubjectAltName or in the leftmost CN component of subject name MUST be an EUI-64. " It turns out that many IoT deployments use identifiers different than EUI-64 numbers, and populate these identifiers in other places in the X.509 certificate. I believe we have to update this recommendation to match deployment reality.. Ciao Hannes IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
_______________________________________________ Uta mailing list Uta@ietf.org https://www.ietf.org/mailman/listinfo/uta
