On 04.02.26 06:41, RFC Errata System wrote:
The CompressedCertificate message is hashed into the handshake transcript (Section 4.4.3 of [RFC8446]) in place of a Certificate message.
Section 4.4.3 of 8446 is of CertificateVerify which is not the only message which uses Certificate message in its transcript hash. Server Finished, client CertificateVerify (if present) and client Finished also use Certificate message in their transcript hash.
I believe it is better to cite Section 4.4.1 instead to generally cover all. Thanks. -Usama
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
