*   While I have no objection to the DelegationUsage extension,
I wonder is an extended key usage would provide the same
confidence in the certificate.

FWIW, a new extendedKeyUsage value would be easier to add into OpenSSL, and I’m 
looking at adding this there (sic).
TLS mailing list

Reply via email to