Re: [lamps] Last Call: <draft-ietf-lamps-hash-of-root-key-cert-extn-02.txt> (Hash Of Root Key Certificate Extension) to Informational RFC

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



I don't understand what the risk is.
 
If a client sees and understands the extension, it can update its trust store to have the new key.  If a client does not see, or does not understand, the extension, then the trust store will have to be updated out of band, just like it is now.

CA's that use this extension must take proper care to ensure that the private key is not exposed.






[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux