Nick Sullivan <nicholas.sulli...@gmail.com> wrote:
> PR: https://github.com/tlswg/tls13-spec/pull/654
> This change adds a set of extensions to the Certificate message. With this
> change, the Certificate message can now hold all extension messages that
> are certificate-specific (rather than connection-specific). This change
> also resolves the anomaly of OCSP messages appearing before certificates in
> the handshake.
There are two ways that such a thing could be done. How your proposal
I think you are right that the SCT and the OCSP response are
per-certificate. In particular, they are not per-certificate-chain, so to
me the latter form, where each certificate in the chain gets its own
extension list, makes more sense to me. Would you consider changing the
proposal to the second form?
TLS mailing list