Roque Gagliano wrote:
2.1. A Compound Trust Anchor Structure
The ETA issues a CRL and one EE certificate.
(Roque) I believe it needs to be explained that more than one ETA EE
cert may be issued during the life-time of the ETA CA however at any
particular moment there is only one valid EE cert.
In light of the recent discussion, this is not necessarily true. If (I mean,
if) the solution to multiple RTAs is multiple CMS objects, then ther wil be
multiple ETA EEs. Note that I'm not in favor of that solution, but we're not
yet in solution space.
5. Relying Party use of Trust Anchor Material
* The ETA's CRL and CMS objects are retrieved from the
publication point referenced by the SIA in the ETA certificate.
(Roque) s/CMS objects/CMS object
Probably not, see above. There may be multiple CMS objects and one CRL.
Robert
_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr
