Blumenthal, Uri - 0553 - MITLL <[email protected]> writes: >Always enforce peer certificate key usage (separation) for ECDSA. ECDSA keys >are more brittle when misused.
Since ECDSA can only do signing, isn't this a bit redundant? In other words you can't really not enforce keyUsage for a signature-only algorithm. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
