>>>>> "Jim" == Jim Schaad <[email protected]> writes:
Jim> There is one other item that is also worrying me about this.
Jim> In doing the check of certificates, one should be doing
Jim> revocation checking. However if one is trying to get network
Jim> access, one cannot independently download the revocation
Jim> information until access is granted, and one cannot get access
Jim> granted until one has finished the EAP negotiation.
TLS these days has the ability to present an OCSP response inline,
right?
Wouldn't that be a eaiser-to-implement strategy?
_______________________________________________
Emu mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/emu
