was client
behavior which would not be impacted. However, the KDCs can use this
information to fail the Freshness token validation before cracking open the
token.
-Original Message-
From: Michiko Short [mailto:michi...@microsoft.com]
Sent: Thursday, December 1, 2016 9:33 AM
To: Jari Arkko
Ok, since answer not obvious starting thread on Kitten.
-Original Message-
From: Jari Arkko [mailto:jari.ar...@piuha.net]
Sent: Thursday, December 1, 2016 1:30 AM
To: Benjamin Kaduk <ka...@mit.edu>
Cc: Paul Miller (NT) <pau...@microsoft.com>; Michiko Short
<michi..
Russ, is there an accepted value for a worst case CMS signature?
-Original Message-
From: Paul Miller (NT)
Sent: Monday, November 28, 2016 1:54 PM
To: Michiko Short <michi...@microsoft.com>; Russ Housley
<hous...@vigilsec.com>; draft-ietf-kitten-pkinit-freshness@ietf.
The size issue a is big one for this late in the process as it never came up
before. We would have to bring it up to the WG for discussion. Is this
required?
Happy to submit an updated version with the client & KDC flipped, first
reference of KDC in abstract spelled out, and 2.1