On 1 feb 2013, at 07:40, Marc Lampo <[email protected]> wrote:
> I can still inform my visitors which CA *I* chose for my real certicate.
> But that seems to be the CAA RR, recently published ...
The primary purpose of the CAA RR is to allow for CAs "to implement additional
controls to reduce the risk of unintended certificate mis-issue" (quote from
RFC 6844). Although it may be used for certificate evaluators (e.g. the
browser) as well, that is not the primary purpose.
jakob
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
