The confusing language about “conceptually similar to a certificate” was
removed from -03.
Thanks again for your review comments.
-- Mike
From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Brian Campbell
Sent: Sunday, March 22, 2015 6:28 PM
To: oauth
Subject: [OAUTH-WG] similar to a certificate? intro of proof-of-possession-02
It says, "The asymmetric key mechanism described above is conceptually similar
to a certificate." near the end of
https://tools.ietf.org/html/draft-ietf-oauth-proof-of-possession-02#section-1
That kinda jumped out at me. I mean, I kinda see the point but it also seems
like a pretty broad statement and potentially one that could be interpreted in
unfavorable or unintended ways.
Perhaps it should be left out? Otherwise maybe elaborate a bit on what is and
what isn't similar to a certificate?
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
