>>>>> "Nico" == Nico Williams <[email protected]> writes:
Nico> However, what could be done is that an attribute with a URI
Nico> could also have a digest of the thing to be fetched via HTTP,
Nico> and maybe a digest of the server cert or an intermediate CA
Nico> for it (or perhaps a key that the actual attribute payload
Nico> will be encrypted in, that way we can use plain HTTP). But
Nico> this starts sounding hairy.
We can certainly do this.
It starts getting quite involved though and illustrates the value of
AAA.
_______________________________________________
abfab mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/abfab
