>> >> Because the issuer is not part of the subject's identity. If the cert >> has the same subject and different issuers it is still considered part >> a cert for the same entity. This is how cross certification works. >> (The CA cert has the same subject, but may have different issuers). > > > As I understand it this thread is mainly about how "to distinguish > between two certs" not about identity (whatever "identity" means).
That's what we are talking about. A the case where you are supplying a nickname which maps to identity, not to a specific cert. bob > > Ciao, Michael. >
