On Tue, Feb 11, 2014 at 6:09 PM, Randy Bush <randy@xxxxxxx> wrote:
> Implementers do not do anything with a CPS pointer in a policyin other words it has no operational use
> qualifier. So, this addition will not impact interoperability.
It has a legal significance.
The terms and conditions are specified within the four corners of the certificate. This has huge importance in any legal dispute arising out of the use or misuse of the certificate and allows the issuer to control their exposure to litigation risk.
The fact that relying parties choose to ignore the policy information does not mean that it does not affect their ability to hold the issuer liable.
Website: http://hallambaker.com/