One of the key issues as far as acceptability to CAs is concerned is impact on issue processes. In particular it has to be possible to deploy any experimental infrastructure without touching the certificate issue code.
I think this is going to mean that CT proofs have to end up being embedded in something other than the cert they relate to. I can't see the precert idea as viable. Transporting the CT proofs in OCSP is viable though - provided some changes are made there. I don't mind if we discuss this as part of Ben's 60 mins or not but we do need to discuss. On Tue, Oct 23, 2012 at 9:17 PM, Paul Hoffman <[email protected]> wrote: > Proposed agenda is at < > https://datatracker.ietf.org/meeting/85/agenda/certrans/> > > Discuss any proposed changes here. > > --Paul Hoffman > _______________________________________________ > therightkey mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/therightkey > -- Website: http://hallambaker.com/
_______________________________________________ therightkey mailing list [email protected] https://www.ietf.org/mailman/listinfo/therightkey
