The simplified verification reads much clearer to me and I think better
matches the intention of the rollover operation, and which key is
performing the authorization. +1

On Wed, Sep 14, 2016 at 8:56 PM, Jacob Hoffman-Andrews <j...@eff.org> wrote:

> https://github.com/ietf-wg-acme/acme/pull/189
>
> Signing with the current account key allows servers to use the same message
> transport authentication that they use for other requests, simplifying the
> verification.
>
> Also fix two spots where we still described newKey/oldKey as thumbprints.
>
> _______________________________________________
> Acme mailing list
> Acme@ietf.org
> https://www.ietf.org/mailman/listinfo/acme
>
_______________________________________________
Acme mailing list
Acme@ietf.org
https://www.ietf.org/mailman/listinfo/acme

Reply via email to