On 16/05/17 19:53, Ryan Sleevi via dev-security-policy wrote:
<snip>
What is the advantage of that, given that PKCS#7 involves
BER, it introduces C/C2/C3, and you're still supplying the same number of
certs?
I don't think there is any notable advantage.
I asked the question because I thought it would be useful to enumerate the
reasons why "there should not be a non-linear path" rather than just assume
it to be fact. ;-)
You mean I can't just spout opinion here without substantiating it? ;)
You can do that if you want, but I tend to find well-reasoned arguments
to be more persuasive. ;-)
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy