Mark: A Verifier that is trusted by a CA (the RP) issuing a credential does not have to be the same Verifier that is trusted by a TLS-peer (a different RP). So I think that load concerns are not relevant.
Thomas: attested-CSR provides for a different kind of assurance than I think attested-TLS requires. So yes, sometimes aCSR is not practical. They are not dependant nor mutually exclusive for the reasons you write in your email. -- Michael Richardson <mcr+i...@sandelman.ca>, Sandelman Software Works -= IPv6 IoT consulting =- *I*LIKE*TRAINS*
signature.asc
Description: PGP signature
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
