2009/2/5 Thomas Roessler <t...@w3.org>: > On 4 Feb 2009, at 21:45, Arthur Barstow wrote: > >> * Is supporting OCSP and CRL a MUST for v1? > > Just for clarity, there are two possible requirements around OCSP and CRLs: > > - support embedding an OCSP response (or a CRL, or a link to a CRL) in the > mark-up of signatures > - support querying OCSP responders (and CRLs) as part of certificate > validation > > I'd argue that the latter is more important than the former.
FWIW, I also think the latter is more important. -- Marcos Caceres http://datadriven.com.au