Jürgen Schönwälder via Datatracker wrote:
> - In 2.2.1, I was not sure what CA certificates are and what EE
> certificates are. I then tried to guess EE = end entity cert, but
> this does not explain CA since the term used in crypto types is
> trust anchor cert. The description in the XML clarified that my
> guess was kind of correct. Perhaps explain upfront what these
> acronyms mean? Or perhaps the acronyms can be avoided by simply
> spelling things out? They do not appear to be used frequently.
> - s/<!-- Entity Certs/<!-- End Entity Certs/
"End Entity" goes back to RFC2510, and I don't think it's defined in any of
our documents. I was expecting to see it in RFC4949 or RFC5280, but it's
used in 5280, but not defined.
I guess it comes from X509.v3, which is still behind the stupid paywall.
The term EE/End Entity is in my opinion a great term, but it also took me
awhile to learn it.
--
Michael Richardson <mcr+IETF@xxxxxxxxxxxx> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
Attachment:
signature.asc
Description: PGP signature
-- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
