On 03/20/2014 11:00 AM, M. D. wrote:
Okay, thanks a lot for your responses! (:
So to sum things up:
1] It is not a very common usecase to have multiple certificates embedded in a
document
I don't think that's true, since that would require the relying party to
be able to discover a chain back to a trusted anchor or root
certificate. I would expect a more common use case is to include the
entire chain including the root or the first cert issued by the root.
However, I believe there is no order implied by the certs in the
X509Data, so you should not assume they are in the correct order.
--Sean
